HackerTrans
トップ新着トレンドコメント過去質問紹介求人

ParzivalHack

no profile record

投稿

CVE-2026-31900, my 0-click RCE in the psf/black GitHub Action

medium.com
3 ポイント·投稿者 ParzivalHack·4 か月前·1 コメント

Show HN: Aegis.rs, the first open source Rust-based LLM security proxy

github.com
2 ポイント·投稿者 ParzivalHack·5 か月前·2 コメント

Show HN: PySpector – a hybrid Python SAST with a Rust core, looking4contributors

github.com
1 ポイント·投稿者 ParzivalHack·6 か月前·0 コメント

コメント

ParzivalHack
·4 か月前·議論
Hi HN, I’m Tommy, the researcher who reported this vulnerability.

While looking at the psf/black GitHub Action I noticed that when the action reads the version from pyproject.toml, it accepts values that are not strictly version strings. This makes it possible to reference a remote package and have it executed during the workflow run.

In a PR scenario, this ofc leads to arbitrary code execution on GitHub Actions runners, with no maintainer interaction.

It's my first CVE, so i wrote a writeup, and i would love to get some feedbacks on it, from people who actually work in CI security/DevSecOps :)
ParzivalHack
·5 か月前·議論
Yoo that's crazy man. Same name, same language and similar purpose. I swear it's the 1st time i see your project lmao