Ukuskenwa kokuvuza kwedatha eyimfihlo kwiindawo zokugcina ze-GitHub eziqhutywe yi-RedHunt Labs zibonise upapasho kwindawo yogcino lukawonke-wonke lwe-API uphawu oluvumela ukufikelela okungenamkhawulo kwiindawo zokugcina zangaphakathi ze-Mercedes-Benz ezibanjwe kwi-server yangaphakathi esekelwe kwi-platform ye-Github Enterprise Server. Kukholelwa ukuba ithokheni yapapashwa ngengozi ngomnye wabasebenzi bakwaMercedes-Benz phakathi kwekhowudi ethunyelwe kwindawo yokugcina uluntu kwiGitHub.
Le tokeni ibikwindawo yokugcina izinto ukusukela nge-29 kaSeptemba 2023, kwaye yafunyanwa nge-11 kaJanuwari 2024. Emva kokuba inkampani yazisiwe ngesiganeko se-24 kaJanuwari, le tokeni yarhoxiswa. Ngokutsho kwabameli beMercedes-Benz, le tokeni ayizange inike ukufikelela kuyo yonke ikhowudi yomthombo ebibanjelwe kwi umncedisi, kodwa kuphela kwiindawo zokugcina iinkcukacha zenkampani zangaphakathi. Abaphandi abafumene ithokheni bathi kwingxelo yokuba iindawo zokugcina iinkcukacha zangaphakathi ezifikelelekayo kusetyenziswa ithokheni ziqulathe amaxwebhu obuchwephesha avaliweyo kunye nolwazi oluyimfihlo yorhwebo, kunye nedatha eyimfihlo efana neziqinisekiso zokungena kwisiseko sedatha, izitshixo zokufikelela kwinkonzo yelifu, izitshixo zokufikelela kwi-API, kunye namagama ayimfihlo enkonzo.
Ukongeza, kubalulekile ukuqaphela ukuskena kwesigidi okwenziwe yi-Escape iidomeyini kwizitshixo ezifikeleleka esidlangalaleni kunye neethokheni ze-API. Ukuskena kwee-URL ezili-189.5 lezigidi kuchonge izitshixo kunye neethokheni ezili-18458 ezifakwe kumaphepha, ama-41% azo ayebaluleke kakhulu, nto leyo ethetha ukuba ukulahleka kwazo kuya kubangela umngcipheko omkhulu wezemali. Umzekelo, abaphandi baqikelela ukuba isixa semali esinokufikelelwa ngeethokheni ze-Stripe API ezishiywe kumaphepha simalunga ne-$20 yezigidi.
Phakathi kwedatha eyimfihlo echongiweyo kumaphepha, iithokheni zokufikelela kwi-GitHub (51.5%), i-GitLab, i-Stripe (0.9%), i-OpenAI (1.4%), i-AWS, iTwitch (0.7%), i-Coinbase, i-X / Twitter (2.7%), I-Slack ( 9.5%) kunye neDiscord (1.2%), kunye nezitshixo zabucala zeRSA (26.3%). I-35% yezitshixo ezichongiweyo kunye namathokheni akhoyo kwiifayile zeJavaScript. Kwi-2.1% yamatyala, idatha ebucayi ifunyenwe kwiifayile ezifunyenwe ngokuqulunqa ikhowudi yeJavaScript kwifayile enye.
umthombo: opennet.ru
