Y
Hacker News
new
|
ask
|
show
|
jobs
by
tinus_hn
1071 days ago
I’m not so sure git is secure against a malicious server, even if you’re not simply pulling in a Makefile written by the attacker.
1 comments
themoonisachees
1071 days ago
Assuming you do perfect integrity checks of the git repo you're pulling, git uses SSH and obeys ssh config for each hosts under the hood. It's safe to say that if you have forward-agent enabled git is vulnerable.
link