Pangolin — We're in the $ecur1ty H4ckath0n and Need Your Vote
This May, one automated campaign backdoored 5,561 GitHub repos in six hours — targeting CI/CD pipelines, not application code. The knowledge to catch these attacks exists, but it's locked in researchers' private notes. Pangolin is here to change that.