Critical privilege escalation design flaw in #Google #Cloud Build enables a #supply chain attack : « And that's it! We've got a new #malware-injected image in the production artifact repository. » #threats [ https://orca.security/resources/blog/bad-build-google-cloud-build-potential-supply-chain-attack-vulnerability/ ] #informatique