CRITICALSupply Chain
Global

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

·Source: The Hacker News

Updated:

Executive Summary

Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, and

Analysis

Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, and
Source Attribution

Originally published by The Hacker News on Jun 24, 2026.

Related Threats