Penetration testing expert Nikhil “SamratAshok” Mittal delivers a presentation at Black Hat Europe. Mittal says continuous integration tools lack strong security controls by default. CI tools are often publicly accessible via the Internet, leaving software code at risk of being stolen or modified by malicious intent. He offers multiple security recommendations, including multiple security settings that are prevalent in CI tools. None of businesses or teams behind those five tools immediately responded to requests for comment on Mittal’s research.”]
Source: https://www.cuinfosecurity.com/expert-security-problems-plague-integration-tools-a-8684