GitHub Actionsにおけるサプライチェーン攻撃とその緩和策の検討 / Supply-Chain Attacks in GitHub Actions and Considerations for Mitigation

4VQQMZ$IBJO"UUBDLTJO(JU)VC"DUJPOT BOE$POTJEFSBUJPOTGPS.JUJHBUJPO 4*( *OGSBTUSVDUVSF(SPVQ %FWFMPQFS1MBUGPSN%JWJTJPO %14 -:$PSQPSBUJPO :VUB)BSJNB

:VUB)BSJNB • $BSFFS • +PJOFE:BIPP+BQBO$PSQPSBUJPOBTBOFXHSBEVBUFJO • 4JODFUIFO IBWFCFFOEFWFMPQJOHBOEPQFSBUJOHJOUFSOBMEFWFMPQFSQMBUGPSNT • $VSSFOUMZGPDVTPONBOBHJOHPVS(JU)VC&OUFSQSJTF4FSWFSJOTUBODFT
• )PCCJFT • $5' • (BNF • 'BDUPSJP4QBHF"HF %-$ 4QBDF&YQMPSBUJPO .PE 'JU#PYJOH 4QMBUPPOPO4XJUDI "TUSPOPLB FUD • -JWFDPODFSUT • /JKJHBTBLJ )JHI4DIPPM*EPM$MVC Jˑ3JT 4FSFOB,P[VLJ FUD 8IP*"N

• .BSDI5XP(JU)VC"DUJPOTDPNQSPNJTFE • $7&UKBDUJPOTDIBOHFEGJMFT • $7&SFWJFXEPHBDUJPOTFUVQ • SFQPTJUPSJFTXFSFVOEFSUISFBU
• 4PNFSFQPTMFBLFETFDSFUTPG(JU)VC"DUJPOT • *HOPSJOHTVQQMZDIBJOSJTLTJTOPMPOHFSBOPQUJPO 5IF5ISFBUPG4VQQMZ$IBJO"UUBDLT Actual malicious code that was introduced to reviewdog/action-setup

8IBU*TB4PGUXBSF4VQQMZ$IBJO "UUBDL "UUBDL0WFSWJFX "UUBDL%FUBJMT "CPVU.JUJHBUJPOT
4VNNBSZ "HFOEB

• "OBUUBDLFSDPNQSPNJTFT TPNFUIJOHZPV"-3&"%: USVTU MJCSBSJFT CVJMEUPPMT FUD 8IBU*TB4PGUXBSF4VQQMZ$IBJO "UUBDL Library
Our system Depended Attacker Inject malicious code

• "OBUUBDLFSDPNQSPNJTFT TPNFUIJOHZPV"-3&"%: USVTU MJCSBSJFT CVJMEUPPMT FUD • .BMJDJPVTDIBOHFJTEFMJWFSFE UISPVHIUIF4".&
MFHJUJNBUF DIBOOFMT (JU /1. %PDLFS (JU)VC"DUJPOT TPJUMPPLT /03."- • 0OFVQTUSFBNCSFBDIDBO DBTDBEFUPBMPUPGEPXOTUSFBN QSPKFDUT 8IBU*TB4PGUXBSF4VQQMZ$IBJO "UUBDL Library Our system Depended Attacker Inject malicious code Infected on next delivery Attack carry out

• 4UFQr 6QTUSFBNDPNQSPNJTF • $7&SFWJFXEPHBDUJPOTFUVQDPNQSPNJTFE • 4UFQr %FQFOEFODZTQSFBE • $7&UKBDUJPOTDIBOHFEGJMFT
XIJDIDBMMTSFWJFXEPHBDUJPOTFUVQ JTQPJTPOFEOFYU • 4UFQr 5BSHFUBUUFNQU • "UUBDLFSBJNTDPJOCBTFBHFOULJU VTJOHQPJTPOFEUKBDUJPOTDIBOHFEGJMFT • 4UFQr .BTTQJWPU • "GUFSUIBU BUUBDLFSSFXSJUFT"-- HJUUBHTPGUKBDUJPOTDIBOHFEGJMFT UISFBUFOJOH SFQPTJUPSJFT "UUBDL0WFSWJFX

• 7BSJBOU"'VMM1ZUIPOQBZMPBEJT #BTFFNCFEEFE JOUIFDPNNJU • 7BSJBOU#5JOZTUVCEPXOMPBET UIFQBZMPBEGSPNBQVCMJD(JU)VC (JTU • #PUIXJMMHSFQUIFSFTVMUTPGUIF
TDSJQUBOEPVUQVUUIFEPVCMF FODPEFESFTVMUTJO#BTF $PNNPO.BMJDJPVT1BZMPBE Variant A

• (SBCTUIF1*%UIF(JU)VC "DUJPOTSVOOFSQSPDFTT $PNNPO.BMJDJPVT1BZMPBE VTSCJOFOWQZUIPO TOJQ JG@@OBNF@@@@NBJO@@ QJE HFU@QJE
QSJOU QJE NBQ@QBUI GQSPD\QJE^NBQT NFN@QBUI GQSPD\QJE^NFN XJUIPQFO NBQ@QBUI S BTNBQ@G PQFO NFN@QBUI SC BTNFN@G GPSMJOFJONBQ@GSFBEMJOFT GPSFBDINBQQFESFHJPO NSFNBUDI S <"'BG> <"'BG> <S> MJOF JGNHSPVQ SSFBEBCMFSFHJPO TUBSUJOU NHSPVQ FOEJOU NHSPVQ IPUGJY0WFSGMPX&SSPS1ZUIPOJOUUPPMBSHFUPDPOWFSUUP$MPOH JGTUBSUTZTNBYTJ[F DPOUJOVF NFN@GTFFL TUBSU TFFLUPSFHJPOTUBSU USZ DIVOLNFN@GSFBE FOE TUBSU SFBESFHJPODPOUFOUT TZTTUEPVUCVGGFSXSJUF DIVOL FYDFQU04&SSPS DPOUJOVF

• (SBCTUIF1*%UIF(JU)VC "DUJPOTSVOOFSQSPDFTT $PNNPO.BMJDJPVT1BZMPBE VTSCJOFOWQZUIPO TOJQ JG@@OBNF@@@@NBJO@@ QJE HFU@QJE
QSJOU QJE NBQ@QBUI GQSPD\QJE^NBQT NFN@QBUI GQSPD\QJE^NFN XJUIPQFO NBQ@QBUI S BTNBQ@G PQFO NFN@QBUI SC BTNFN@G GPSMJOFJONBQ@GSFBEMJOFT GPSFBDINBQQFESFHJPO NSFNBUDI S <"'BG> <"'BG> <S> MJOF JGNHSPVQ SSFBEBCMFSFHJPO TUBSUJOU NHSPVQ FOEJOU NHSPVQ IPUGJY0WFSGMPX&SSPS1ZUIPOJOUUPPMBSHFUPDPOWFSUUP$MPOH JGTUBSUTZTNBYTJ[F DPOUJOVF NFN@GTFFL TUBSU TFFLUPSFHJPOTUBSU USZ DIVOLNFN@GSFBE FOE TUBSU SFBESFHJPODPOUFOUT TZTTUEPVUCVGGFSXSJUF DIVOL FYDFQU04&SSPS DPOUJOVF (1)

• (SBCTUIF1*%UIF(JU)VC "DUJPOTSVOOFSQSPDFTT • 1BSTFTQSPDQJENBQTUP HFUSFBEQFSNJUUFE NFNPSZ TFHNFOUT
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

• 3FBETQSPDQJENFNBOE XSJUFTFWFSZSFBEBCMFCZUF UP TUEPVU $PNNPO.BMJDJPVT1BZMPBE VTSCJOFOWQZUIPO TOJQ JG@@OBNF@@@@NBJO@@ QJE HFU@QJE QSJOU QJE NBQ@QBUI GQSPD\QJE^NBQT NFN@QBUI GQSPD\QJE^NFN XJUIPQFO NBQ@QBUI S BTNBQ@G PQFO NFN@QBUI SC BTNFN@G GPSMJOFJONBQ@GSFBEMJOFT GPSFBDINBQQFESFHJPO NSFNBUDI S <"'BG> <"'BG> <S> MJOF JGNHSPVQ SSFBEBCMFSFHJPO TUBSUJOU NHSPVQ FOEJOU NHSPVQ IPUGJY0WFSGMPX&SSPS1ZUIPOJOUUPPMBSHFUPDPOWFSUUP$MPOH JGTUBSUTZTNBYTJ[F DPOUJOVF NFN@GTFFL TUBSU TFFLUPSFHJPOTUBSU USZ DIVOLNFN@GSFBE FOE TUBSU SFBESFHJPODPOUFOUT TZTTUEPVUCVGGFSXSJUF DIVOL FYDFQU04&SSPS DPOUJOVF (3) (2)

•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

"UUBDL%FUBJMT

• "CVTFPGQVMM@SFRVFTU@UBSHFU PO TQPUCVHTTPOBSGJOECVHT SFQPTJUPSZMFBLTNBJOUBJOFS`T 1"5" 4UFQ6QTUSFBN$PNQSPNJTF spotbugs/sonar-findbugs Attacker Pull
request(PPE) Leak maintainer’s PAT-A

• "CVTFPGQVMM@SFRVFTU@UBSHFU PO TQPUCVHTTPOBSGJOECVHT SFQPTJUPSZMFBLTNBJOUBJOFS`T 1"5" • 1"5"VTFEUPBEEBUUBDLFS BDDPVOU6TFS"UP TQPUCVHTTQPUCVHT
4UFQ6QTUSFBN$PNQSPNJTF spotbugs/sonar-findbugs Attacker Pull request(PPE) spotbugs/spotbugs Attacker(User A) Add User A to spotbugs/spotbugs using PAT-A Leak maintainer’s PAT-A

• "CVTFPGQVMM@SFRVFTU@UBSHFU PO TQPUCVHTTPOBSGJOECVHT SFQPTJUPSZMFBLTNBJOUBJOFS`T 1"5" • 1"5"VTFEUPBEEBUUBDLFS BDDPVOU6TFS"UP TQPUCVHTTQPUCVHT
• 6TFS"JOUSPEVDFTBOFX XPSLGMPXUIBUEVNQTBMMTFDSFUT PGUIFSFQPTJUPSZ 4UFQ6QTUSFBN$PNQSPNJTF spotbugs/sonar-findbugs Attacker Pull request(PPE) spotbugs/spotbugs Attacker(User A) Push malicious workflow Add User A to spotbugs/spotbugs using PAT-A Leak maintainer’s PAT-A

• "CVTFPGQVMM@SFRVFTU@UBSHFU PO TQPUCVHTTPOBSGJOECVHT SFQPTJUPSZ MFBLTNBJOUBJOFS`T1"5" • 1"5"VTFEUPBEEBUUBDLFS BDDPVOU6TFS"UP TQPUCVHTTQPUCVHT
• 6TFS"JOUSPEVDFTBOFXXPSLGMPX UIBUEVNQTBMMTFDSFUTPGUIF SFQPTJUPSZ • "NPOHUIFEVNQFETFDSFUTJT 1"5# PXOFECZUIFNBJOUBJOFSPG SFWJFXEPHBDUJPOTFUVQ 4UFQ6QTUSFBN$PNQSPNJTF spotbugs/sonar-findbugs Attacker Pull request(PPE) spotbugs/spotbugs Attacker(User A) Push malicious workflow Leak all secrets including PAT-B Add User A to spotbugs/spotbugs using PAT-A Leak maintainer’s PAT-A

• "UUBDLFSGPSLT SFWJFXEPHBDUJPOTFUVQBOEBEET NBMJDJPVT$PNNJU" 4UFQ%FQFOEFODZ4QSFBE fork Push malicious commit v1
tag Attacker reviewdog/action-setup

• "UUBDLFSGPSLT SFWJFXEPHBDUJPOTFUVQBOEBEET NBMJDJPVT$PNNJU" • 8JUITUPMFO1"5# SFQPJOUT VQTUSFBNUBHW UP$PNNJU" 4UFQ%FQFOEFODZ4QSFBE
fork Push malicious commit v1 tag Re-point tag to malicious commit using PAT-B Attacker reviewdog/action-setup

• "UUBDLFSGPSLT SFWJFXEPHBDUJPOTFUVQBOEBEET NBMJDJPVT$PNNJU" • 8JUITUPMFO1"5# SFQPJOUT VQTUSFBNUBHW UP$PNNJU" •
$IBJOSFBDUJPO • UKBDUJPOTFTMJOUDIBOHFEGJMFT EFQFOETPOSFWJFXEPHBDUJPO TFUVQ!W • UKBDUJPOTDIBOHFEGJMFTEFQFOETPO FTMJOUDIBOHFEGJMFT 4UFQ%FQFOEFODZ4QSFBE fork Push malicious commit v1 tag Re-point tag to malicious commit using PAT-B Depended Depended using v1 tag Attacker reviewdog/action-setup tj-actions/changed-files tj-actions/eslint-changed-files

• "UUBDLFSGPSLTSFWJFXEPHBDUJPO TFUVQBOEBEETNBMJDJPVT$PNNJU " • 8JUITUPMFO1"5# SFQPJOUT VQTUSFBNUBHW UP$PNNJU" •
$IBJOSFBDUJPO • UKBDUJPOTFTMJOUDIBOHFEGJMFTEFQFOET POSFWJFXEPHBDUJPOTFUVQ!W • UKBDUJPOTDIBOHFEGJMFTEFQFOETPO FTMJOUDIBOHFEGJMFT • .BMJDJPVTXPSLGMPXSVOTJOTJEFUK BDUJPOTDIBOHFEGJMFT$*BOETUFBMT 1"5$ IBTXSJUFQFSNJTTJPO 4UFQ%FQFOEFODZ4QSFBE Attacker reviewdog/action-setup fork Push malicious commit v1 tag Re-point tag to malicious commit using PAT-B tj-actions/changed-files tj-actions/eslint-changed-files Depended Depended using v1 tag Leak secrets include PAT-C

• "UUBDLFSGPSLTUK BDUJPOTDIBOHFEGJMFTBOEBEET NBMJDJPVT$PNNJU# 4UFQ5BSHFUFE"UUFNQU fork Push malicious commit v39
tag Attacker tj-actions/changed-files

• "UUBDLFSGPSLTUK BDUJPOTDIBOHFEGJMFTBOEBEET NBMJDJPVT$PNNJU# • 8JUITUPMFO1"5$ SFQPJOUT VQTUSFBNUBHW UP$PNNJU# 4UFQ5BSHFUFE"UUFNQU
fork Push malicious commit v39 tag Re-point tag to malicious commit using PAT-C Attacker tj-actions/changed-files

• "UUBDLFSGPSLTUK BDUJPOTDIBOHFEGJMFTBOEBEET NBMJDJPVT$PNNJU# • 8JUITUPMFO1"5$ SFQPJOUT VQTUSFBNUBHW UP$PNNJU# •
.BMJDJPVTXPSLGMPXSVOTBOE MFBLT5PLFOT 4UFQ5BSHFUFE"UUFNQU fork Push malicious commit v39 tag Re-point tag to malicious commit using PAT-C Depended using v39 tag Leak secrets Attacker tj-actions/changed-files coinbase/agentkit

• "UUBDLFSGPSLTUK BDUJPOTDIBOHFEGJMFTBOEBEET NBMJDJPVT$PNNJU# • 8JUITUPMFO1"5$ SFQPJOUT VQTUSFBNUBHW UP$PNNJU# •
.BMJDJPVTXPSLGMPXSVOTBOE MFBLT5PLFOT • 1BMP"MUP/FUXPSLTBMFSUT NBJOUBJOFS$PJOCBTFGJYFTUIBU BOEDPOGJSNTOPBEEJUJPOBM DPNQSPNJTF 4UFQ5BSHFUFE"UUFNQU Attacker tj-actions/changed-files fork Push malicious commit v39 tag Re-point tag to malicious commit using PAT-C coinbase/agentkit Depended using v39 tag Leak secrets

• 6TJOH1"5$ BUUBDLFSGPSDFQVTIFEFWFSZUBH UPBNBMJDJPVTDPNNJU • "OZXPSLGMPXQJOOJOH!W XPVMESVOUIFQBZMPBEPOUIFOFYUFYFDVUJPO QVUUJOH
SFQPTJUPSJFTBUSJTL • 1BZMPBEVODIBOHFEEVNQTTFDSFUTPG(JU)VC"DUJPOT • .PUJWFVODMFBS 4UFQ.BTT1JWPU

"CPVU.JUJHBUJPOT

• 5ISFBUlQVMM@SFRVFTU@UBSHFUzBT)JHI3JTL • lQVMM@SFRVFTU@UBSHFUzHJWFTSFBEXSJUFQFSNJTTJPOTUPGPSLFE13T • 1SFGFSVTJOHlQVMM@SFRVFTUzPSNBOVBMBQQSPWBM • IUUQTTFDVSJUZMBCHJUIVCDPNSFTPVSDFTHJUIVCBDUJPOTQSFWFOUJOHQXO SFRVFTUT •
1JOEFQFOEFODJFTCZ4)" OPUVTJOHUBHT • VTFTPXOFSSFQP!EFBECFFGJOTUFBEPG!W • .JOJNJ[FTFDSFUTFYQPTVSFJOXPSLGMPXT .JUJHBUJPOTGPS6TFST

• 3FTUSJDUz"MMPXFE"DUJPOTz • 1FSNJUPOMZJOUFSOBM"DUJPOTPS(JU)VCWFSJGJFE"DUJPOT • &TUBCMJTIDPNQBOZXJEFTFDVSJUZQPMJDJFT • 1JOFWFSZ(JU)VC"DUJPOTCZJNNVUBCMF4)" • 7FSJGZUIFIBTIPGBOZEPXOMPBEFECJOBSZPSBSUJGBDU
• (JU)VC1MBOT • *NNVUBCMF"DUJPOT • *NNVUBCMF3FMFBTFT .JUJHBUJPOTGPS()&BENJOT

• "OBUUBDLFSJTIJHITLJMMFEBOETNBSU • .JUJHBUJPOTʺDPOWFOJFODFFWFSZDPOUSPMIBTBDPTU CVUTUBSUXJUIUIFMPX GSJDUJPONFBTVSFTZPVDBO • 4VQQMZDIBJOBUUBDLTLFFQFWPMWJOHTUBZJOGPSNFEUISPVHIUSVTUFEDIBOOFMT • .PTUPGUPEBZ`TNBUFSJBMEJTUJMMT1BMP"MUP/FUXPSLT`JOEFQUISFQPSUDIFDL
UIF3FGFSFODFTTMJEFGPSGVMMEFUBJMT 4VNNBSZ

• (JU)VC"DUJPOT4VQQMZ$IBJO"UUBDL"5BSHFUFE"UUBDLPO$PJOCBTF &YQBOEFEUPUIF8JEFTQSFBEUKBDUJPOTDIBOHFEGJMFT*ODJEFOU5ISFBU "TTFTTNFOU 6QEBUFE • /FX(JU)VC"DUJPOTVQQMZDIBJOBUUBDLSFWJFXEPHBDUJPOTFUVQ • (JU)VC"DUJPOUKBDUJPOTDIBOHFEGJMFTTVQQMZDIBJOBUUBDLFWFSZUIJOHZPV OFFEUPLOPX
• )BSEFO3VOOFSEFUFDUJPOUKBDUJPOTDIBOHFEGJMFTBDUJPOJTDPNQSPNJTFE 3FGFSFODFT

GitHub Actionsにおけるサプライチェーン攻撃とその緩和策の検討 / Supply-...

GitHub Actionsにおけるサプライチェーン攻撃とその緩和策の検討 / Supply-Chain Attacks in GitHub Actions and Considerations for Mitigation

More Decks by LINEヤフーTech (LY Corporation Tech)

Other Decks in Technology

Featured

Transcript