Techly NewsGet the app

Get the latest tech news

Over 3.1 Million Fake 'Stars' on GitHub Projects Used To Boost Rankings


Researchers have uncovered widespread manipulation of GitHub's star-rating system, with over 3.1 million fraudulent stars identified across 15,835 repositories, according to a new study by Socket, Carnegie Mellon University, and North Carolina State University. The research team analyzed 20TB of d...

Researchers have uncovered widespread manipulation of GitHub's star-rating system, with over 3.1 million fraudulent stars identified across 15,835 repositories, according to a new study by Socket, Carnegie Mellon University, and North Carolina State University.The research team analyzed 20TB of data from GHArchive, spanning 6 billion GitHub events from 2019 to 2024, using their "StarScout" detection tool. The tool identified 278,000 accounts engaging in coordinated inauthentic behavior to artificially boost repository rankings. The platform has previously encountered malicious exploitation of this system, including the "Stargazers Ghost Network" malware operation discovered last summer.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of stars

stars

Photo of Rankings

Rankings

Photo of GitHub projects

GitHub projects

Related news:

News photo

Over 3.1 million fake "stars" on GitHub projects used to boost rankings

News photo

GitHub projects targeted with malicious commits to frame researcher

News photo

Nikolai Fyodorov wanted to resurrect the dead to live among the stars

« A Waymo robotaxi and a Serve delivery robot collided in Los Angeles
The GTA III port for the Dreamcast has been released »