The call is coming from inside your pipeline: the anatomy of a Codecov attack
An attacker added a single line of code to a popular bash script in January 2021, compromising tens of thousands of users. This highlights the vulnerability of pipeline security. Users should review their pipeline code for potential security risks. Regular security audits and monitoring are recommended.