Security researchers identified a major flaw in the AWS Console that could have allowed attackers to seize control of key GitHub repositories, potentially leading to widespread supply chain attacks. The vulnerability, linked to a misconfiguration in AWS CodeBuild CI pipelines, has been addressed by AWS following its disclosure in August 2025. Users are advised to implement certain security measures to mitigate risks.

Researchers discovered vulnerabilities in the Nix ecosystem related to GitHub Actions, specifically concerning the pull_request_target event, which could allow for supply chain attacks and command injection. They identified two significant flaws: one involving xargs and the other enabling symbolic link exploitation, leading to unauthorized access to sensitive data. The maintainers acted quickly to disable the vulnerable workflows and implement fixes.

A significant vulnerability was discovered in the Open VSX marketplace, which could allow attackers to gain full control over millions of developer machines by publishing malicious updates to extensions. This flaw, rooted in a CI issue, underscores the risks associated with untrusted third-party software in development environments.