Skip to content

draft#917

Merged
tannerlinsley merged 9 commits into
mainfrom
followup-post
May 12, 2026
Merged

draft#917
tannerlinsley merged 9 commits into
mainfrom
followup-post

Conversation

@LadyBluenotes
Copy link
Copy Markdown
Member

@LadyBluenotes LadyBluenotes commented May 12, 2026

No description provided.

schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
crutchcorn
crutchcorn reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
schiller-manuel
schiller-manuel reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
Sheraff
Sheraff reviewed May 12, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@Sheraff Sheraff left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is good and straight to the point.

If i were a hater I would say that the "what we're working on next" doesn't feel like enough: it patches this type of security issues, but what are we doing for our broader security posture?

Comment thread src/blog/incident-followup.md Outdated
Comment thread src/blog/incident-followup.md Outdated
Comment thread src/blog/incident-followup.md Outdated
Comment thread src/blog/incident-followup.md Outdated
@tannerlinsley @Sheraff
Apply suggestion from @Sheraff
bba6958 
Co-authored-by: Flo <me@florianpellet.com>
tannerlinsley
tannerlinsley reviewed May 12, 2026
View reviewed changes
Comment thread src/blog/incident-followup.md Outdated
20jasper
20jasper reviewed May 12, 2026
View reviewed changes
Copy link
Copy Markdown

@20jasper 20jasper left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think tonally everything is good and responsibility is well accepted. I think this has a bit too much overlap with the postmortem article linked up front. Consider a quick "this was a cache poisoning and permissions attack caused by this notorious GHA feature, read more on the root cause here"

@tannerlinsley tannerlinsley merged commit 9d95ef7 into main May 12, 2026
5 checks passed
@tannerlinsley tannerlinsley deleted the followup-post branch May 12, 2026 16:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tannerlinsley tannerlinsley tannerlinsley left review comments

@schiller-manuel schiller-manuel schiller-manuel left review comments

@crutchcorn crutchcorn crutchcorn left review comments

+2 more reviewers

@Sheraff Sheraff Sheraff left review comments

@20jasper 20jasper 20jasper left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@LadyBluenotes @Sheraff @tannerlinsley @schiller-manuel @crutchcorn @20jasper