Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?

I have a vague feeling that there is a wide spread security problem which goes unnoticed. I’m trying to find out how to check the level of relevance and awareness out there or how to maybe raise it.
Situation:
When using GitLab CI with the… Continue reading Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?

Build 2024: Microsoft to Update the Windows 11 Developer Experience

During its Build 2024 keynote, Microsoft revealed several updates to the Windows 11 developer experience spanning Dev Home, Dev Drive, WSL, and more.
The post Build 2024: Microsoft to Update the Windows 11 Developer Experience appeared first on Thurrot… Continue reading Build 2024: Microsoft to Update the Windows 11 Developer Experience

Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002)

New versions of Git are out, with fixes for five vulnerabilities, the most critical (CVE-2024-32002) of which can be used by attackers to remotely execute code during a “clone” operation. About Git Git is a widely-popular distributed versio… Continue reading Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002)