$10.000 bounty for exposed .git to RCE, by Lev Shmelev
CodeQL query to detect RCE via ZipSlip - $5,500 bounty from GitHub Security Lab
Research GitHub Security Lab
How to Hunt for Zip Slip Exploits in Open Source Bug Bounty
Report not flagging CVE-2021-23413 and CVE-2022-48285 for JSzip · Issue #5826 · jeremylong/DependencyCheck · GitHub
Research GitHub Security Lab
Research GitHub Security Lab
8/18/2019 - Live Bug Bounty Recon Session w/ @TheCyberMentor @zseano @StokFredrik
CodeQL query to detect RCE via ZipSlip - $5,500 bounty from GitHub Security Lab
Grzegorz Niedziela di LinkedIn: CodeQL query to detect RCE via ZipSlip - $5,500 bounty from GitHub…
Research GitHub Security Lab
$50,000 Shopify access to source code via leaking GitHub token - Hackerone bug bounty
$50k bug bounty on Shopify explained (GitHub access token leaked via electron application)