Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

Christine Lemmer-Webber @cwebber@social.coop

3/10/2026, 5:59:08 PM

Public

EDIT EDIT EDIT: Yeah just an attack on github actions https://www.stepsecurity.io/blog/kubernetes-el-compromised-how-a-pwn-request-exploited-a-popular-emacs-package

EDIT: I seem to be amending a lot of my posts lately, but actually I am not sure if an agent was involved in this, but a GitHub Actions token exfiltration at minimum was

Even emacs users are not immune to the risks of supply chain attacks from people using LLMs in their toolchain. kubernetes.el compromised via another agent attack https://old.reddit.com/r/emacs/comments/1rowm5i/first_hacked_emacs_package/

kubernetes-el Compromised: How a Pwn Request Exploited a Popular Emacs Package - StepSecurity

On March 5, 2026, a threat actor exploited a classic "Pwn Request" vulnerability in the CI workflow of kubernetes-el/kubernetes-el, a popular Emacs package for managing Kubernetes clusters. The attacker stole the repository's GITHUB_TOKEN (with full write permissions), exfiltrated CI/CD secrets, defaced the repository, and injected destructive code.

www.stepsecurity.io

Christine Lemmer-Webber @cwebber@social.coop

3/10/2026, 6:07:39 PM

Public

This looks like a safe commit tho https://github.com/kubernetes-el/kubernetes-el/issues/383#issuecomment-4017373542

This repository has been compromised · Issue #383 · kubernetes-el/kubernetes-el

@noorul 929c639 This repository has been compromised a few days ago. I've just discovered this a few minutes ago. Apparently a Github action was used. I've removed the package from Melpa and blocke...

github.com · GitHub

If you have a fediverse account, you can quote this note from your own instance. Search https://social.coop/users/cwebber/statuses/116206210842938432 on your instance and quote it. (Note that quoting is not supported in Mastodon.)