Malware attack on GitHub

MarcP · August 3, 2022, 9:46am

Sharing this here to get awareness for devs because Discourse might be using one of the infected repo’s…

Mr.X_Mr.X · August 3, 2022, 10:23am

The infected repos are clones of the originals, the originals are OK.

david · August 3, 2022, 10:33am

We’re not aware of any impact to Discourse or our dependencies.

As @Mr.X_Mr.X mentioned, the tweet author has admitted that the findings were limited to forks/clones, rather than the true versions of dependencies:

MarcP · August 3, 2022, 10:38am

Ah that is good to know. Better safe then sorry, haha. Felt this was a place where devs at least should be aware of the malware.

miss · August 3, 2022, 11:15am

Welcome to internet!

Topic		Replies	Views
Building bootstrap error Installation	46	1668	December 20, 2022
Trouble upgrading from 3.3.0.beta1 to 3.3.0.beta6 Installation	22	118	August 8, 2024
Docker sometimes fails to connect to github.com Installation	9	3681	January 5, 2023
Themes/components from GitLab gives error 500 when installing/updating Bug	14	1234	December 6, 2022
Installation Error when rebuilding with Discourse Official Plugins (Discourse v2.0.3) Installation solved	8	2523	August 16, 2018