RWA A critical CI/CD vulnerability named ‘Cordyceps’ has been discovered, affecting open-source repositories of major tech firms like Microsoft and Google. This security flaw could allow attackers to compromise software supply chains, posing significant risks to development pipelines.