bug-bounty451
google354
xss338
microsoft283
facebook246
apple171
exploit163
rce160
malware102
account-takeover95
cve91
bragging-post86
csrf83
browser77
writeup75
privilege-escalation68
react60
authentication-bypass57
cloudflare54
dos53
node52
docker51
ssrf51
phishing50
aws48
access-control47
oauth45
smart-contract45
supply-chain44
ethereum43
defi42
web342
sql-injection41
lfi37
idor35
vulnerability-disclosure32
smart-contract-vulnerability32
clickjacking31
burp-suite31
info-disclosure31
race-condition31
web-application31
reverse-engineering31
wordpress30
input-validation30
web-security29
information-disclosure29
cloud29
reflected-xss29
solidity27
0
2/10
tool
Claude Code Review is an AI-powered code review tool that analyzes GitHub pull requests using multiple specialized agents to detect logic errors, security vulnerabilities, edge case issues, and regressions, posting findings as inline comments with severity levels and verification reasoning.
Claude Code
Anthropic
GitHub
GitHub Actions
GitLab CI/CD
Visual Studio Code
JetBrains IDEs
0
8/10
vulnerability
Researcher discovered a critical DoS vulnerability in GitHub Actions by exploiting git commit hash collisions—abbreviated 7-character shorthashes can be maliciously collided with, causing tarball resolution failures that break all builds using that action. The researcher accidentally triggered a global outage while demonstrating the attack.
denial-of-service
github-actions
git-hash-collision
commit-hash
supply-chain-attack
infrastructure-attack
bug-bounty
ci-cd
GitHub Actions
Teddy Katz
actions/docker
76ff57a
76ff57a6c3d817840574a98950b0c7bc4e8a13a8
76ff57aa21370794040cd0caafd84d8a7aa0927c