I hope the author received a nice well deserved bounty for this find. Could have... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		dpacmittal 4 months ago \| parent \| context \| favorite \| on: How we exploited CodeRabbit: From simple PR to RCE... I hope the author received a nice well deserved bounty for this find. Could have been catastrophic in the wrong hands.

cube00 4 months ago [–]

When they're spinning it [1] as a PR opportunity with no mention of the breach there won't be a bounty.

[1]: https://news.ycombinator.com/item?id=44954242

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact