Techly NewsGet the app

Get the latest tech news

How we exploited CodeRabbit: From simple PR to RCE and write access on 1M repos


In this blog post, we explain how we got remote code execution (RCE) on CodeRabbit’s production servers, leaked their API tokens and secrets, how we could have accessed their PostgreSQL datab…

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Access

Access

Photo of Repos

Repos

Photo of CodeRabbit

CodeRabbit

Related news:

News photo

UK Reportedly Withdraws Demand to Access Encrypted iCloud User Data

News photo

FDA approves landmark fibromyalgia drug that works like no other | People living with fibromyalgia will soon have access to a novel therapy designed to tackle the condition’s most elusive symptom: Poor-quality sleep.

News photo

Boston Public Library Aims To Increase Access To a Vast Historic Archive Using AI

« iOS 18.6.2 Update Coming Soon for iPhones
Emacs as your video-trimming tool »