Product

Check out our evergrowing list of integrations

Spot critical changes before threat actors exploit them

Plant canaries across your cloud to catch attackers and contain impact

Risk-driven threat detection with automated triage

Investigate without drowning in data—Automated Storylines reveal the entry point, map the attack flow, guide quarantine and containment with ease.

Respond to attacks with surgical precision and speed to minimize impact

Integrations Why Stream?Customers Book a Demo

Resources

Learn about cloud detection and response

Join our live event or watch on demand

Upcoming Events

Meet our team at upcoming expos and events

Company

Get to know our story and team.

Solution Overview

Download PDF (2-page overview)

News, articles and press resources.

Join us, we're hiring!

Tags

#

Secrets

No items found.

GitHub Action Supply Chain Attack Exposes Secrets: What You Need to Know and How to Respond

Cloud Security

GitHub Action Supply Chain Attack Exposes Secrets: What You Need to Know and How to Respond

A widely used GitHub Action, tj-actions/changed-files, was compromised sometime before March 14, 2025 with a malicious payload, leading to the exposure of secrets in public repository logs. The incident has been assigned CVE-2025-30066 and is a stark reminder of the growing risks in the software supply chain.

Or Shoshani

Mar 16, 2025

4

min

Browse other tags

Cost Optimization

Disaster Recovery

Troubleshooting

Product

Prepare
Detect
Investigate
Respond

Resources

Book a demo
Customers
Blog
Webinars
CloudWiki

Company

About us
Become a Partner
Press
Jobs
Contact us

© StreamSec ltd.

Copyright Policy
Terms of Use
Privacy