Malicious URLs cause Git (v2.26.0) to present stored credentials to wrong server (github.com) 29 points by vwpolo3 6y ago ↗ HN
[–] vwpolo3 6y ago ↗ Without upgrade, this might be exploited through package managers able to fetch from Git URLs (so NPM, Go Modules, and others).
2 comments
[ 2.8 ms ] story [ 16.2 ms ] thread