JFrog’s RepoHunter AI bot identified 13 major OSS CI/CD vulnerabilities, stopping the next Shai Hulud supply chain attack. See how our research is securing the OSS supply chain.

JFrog is a leading provider of DevOps and software distribution solutions, offering tools for artifact management, continuous integration, and binary repositories. Developers can learn about software delivery pipelines, artifact management best practices, and CI/CD automation to accelerate their software delivery process and ensure reliable and secure software releases using JFrog's platform.

JFrog

JFrog's AI-powered security research bot, RepoHunter, proactively identified 13 critical CI/CD vulnerabilities across major open-source projects including Ansible, QGIS, Telepresence, and TC39 JavaScript proposals. The vulnerabilities stem from 'Pwn Request' patterns where GitHub Actions workflows using pull_request_target triggers execute untrusted contributor code in privileged contexts, exposing secrets and enabling supply chain attacks. RepoHunter detected these before attackers could exploit them, preventing a potential Shai-Hulud-style supply chain worm. The post details the four-phase attack chain (Exposure, Execution, Harvesting, Propagation), explains why pull_request_target is particularly dangerous, and covers 13 responsibly disclosed vulnerabilities spanning 10 Critical, 2 High, and 1 Medium severity findings. JFrog also promotes its Advanced Security product for detecting such workflow misconfigurations.

How JFrog’s AI-Research Bot Found OSS CI/CD Vulnerabilities to Prevent Shai Hulud 3.0

What Is a “Pwn Request” / GitHub Actions CI Takeover?

RepoHunter: Hunting CI Takeovers Before They Scale

Hypothetical Example: A Shai-Hulud-Style CI Worm

Vulnerability Deep Dive: Ansible Platform

Conclusion – Securing CI as Critical Infrastructure