AI-assisted campaign
Source: ebuildersecurity.com
Published:
<p>A six-week supply chain attack against GitHub repositories exposed credentials from hundreds of organisations before security researchers detected it in April 2026. The campaign, dubbed prt-scan by Wiz Research, targeted the pull_request_target workflow trigger and successfully compromised secret