GHES Key Rotation, Bug Bounty Program Refocus, AI Agent Permission Fatigue
Today's Highlights
This week's top security news features critical action for GitHub Enterprise Server users with a signing key rotation due to an ongoing investigation. We also cover GitHub's strategic refocusing of its bug bounty program for higher quality submissions and an interactive look at AI agent permission fatigue.
Investigation update: GitHub Enterprise Server signing key rotation (GitHub Blog)
Source: https://github.blog/security/investigating-unauthorized-access-to-githubs-internal-repositories/
