github-integration

3 articles
sort: new top best
clear filter
bug-bounty448 google354 microsoft311 facebook262 xss238 apple179 malware174 rce149 exploit124 bragging-post101 cve99 account-takeover93 phishing83 csrf79 privilege-escalation77 supply-chain65 stored-xss65 authentication-bypass63 dos60 browser57 reflected-xss57 react50 cloudflare49 cross-site-scripting48 reverse-engineering48 input-validation48 access-control47 aws45 docker45 smart-contract45 node44 sql-injection43 ethereum43 web343 defi42 web-security42 web-application41 ssrf38 burp-suite35 idor34 vulnerability-disclosure34 info-disclosure33 race-condition33 html-injection33 cloud32 writeup32 oauth32 buffer-overflow32 smart-contract-vulnerability32 information-disclosure30
0 2/10
Claude Code Review
tool

Claude Code Review is an AI-powered code review tool that analyzes GitHub pull requests using multiple specialized agents to detect logic errors, security vulnerabilities, edge case issues, and regressions, posting findings as inline comments with severity levels and verification reasoning.

code-review ci-cd github-integration static-analysis automation security-scanning bug-detection
Claude Code Anthropic GitHub GitHub Actions GitLab CI/CD Visual Studio Code JetBrains IDEs
code.claude.com · gmays · 14 hours ago · details · hn
0 8/10
Stored XSS in webcomponents.org
vulnerability

A stored XSS vulnerability in webcomponents.org allowed attackers to inject malicious JavaScript via repository homepage URLs, enabling theft of GitHub OAuth authorization codes and account hijacking to star repositories on behalf of authenticated users.

stored-xss oauth-attack github-integration account-takeover polymer webcomponents same-origin-bypass iframe-abuse authorization-code-interception
webcomponents.org GitHub Thomas Orlita Polymer
websecblog.com · devanshbatham/Awesome-Bugbounty-Writeups · 20 hours ago · details
0 1/10
Add per-repo output language preference
news

GitAuto adds per-repository language preference for AI-generated PR comments, supporting 70+ languages while keeping PR titles and bodies in English.

feature-announcement localization ai-tooling github-integration
GitAuto
nishiohiroshi · 21 hours ago · details · hn