The utilization of self-hosted runners in PyTorch for GitHub activities has been found to pose various vulnerabilities, as discovered by security engineer John Stawinski IV. These vulnerabilities can result in numerous malicious actions. According to Stawinski, a security engineer, the widely used open-source framework PyTorch from Meta employs self-hosted runners within its GitHub repository. However, this practice deviates from recommended best practices and may lead to […]
Critical Supply Chain Attack Possible via PyTorch
