Gentoo's GitHub mirror compromised
Gentoo's GitHub mirror compromised
[Security] Posted Jun 29, 2018 13:19 UTC (Fri) by corbet
The Gentoo project's GitHub account has
been compromised and used to distribute malicious code. "This
does NOT affect any code hosted on the Gentoo infrastructure. Since the
master Gentoo ebuild repository is hosted on our own infrastructure and
since Github is only a mirror for it, you are fine as long as you are using
rsync or webrsync from gentoo.org.
"