GitHub scans and finds 4M vulnerabilities

GitHub ran a security scan to find old vulnerabilities in JavaScript and Ruby libraries in over a half million public repositories. The scan results turned up over four million vulnerabilities and sent alerts to developers to patch the bugs. 

GitHub is leading software development platform used to host, review and manage software source code, used by millions of developers.

The scan initiative started in November and by December 1, nearly half a million vulnerabilities had been patched, according to the ZDNet report

GitHub plans to also expand its scans of public repositories to Python dependencies later this year as well. Private repositories need to ‘opt in’ to take advantage of the alerts. 

Leave a Reply

Your email address will not be published. Required fields are marked *