The supply chain breach associated with the GitHub Action “tj-actions/changed-files” commenced as a precisely-targeted assault on one of Coinbase’s open-source initiatives, subsequently transforming into a more extensive occurrence.
“The payload aimed to take advantage of the public CI/CD pipeline of one of their open-source projects – agentkit, likely intending to exploit it for additional breaches,”