The exfiltrated environment variables contained these entries: ``` "POSTGRESQL_D... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		megamorf 5 months ago \| parent \| context \| favorite \| on: How we exploited CodeRabbit: From simple PR to RCE... The exfiltrated environment variables contained these entries: ``` "POSTGRESQL_DATABASE": "(CENSORED)", "POSTGRESQL_HOST": "(CENSORED)", "POSTGRESQL_PASSWORD": "(CENSORED)", "POSTGRESQL_USER": "(CENSORED)", ```

nodesocket 5 months ago [–]

Sure, but connections from these worker machines shouldn’t be allowed directly to the database.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact