OCI

A simple typo of ghcr.io to ghrc.io would normally be a small goof. You’d typically get a 404 or similar error, finally work out the issue, fix it, and move along. But in this case, that typo appears to be doing something very malicious, stealing your credentials. What’s ghcr.io? First, a quick bit of background. ghcr.io is an OCI conformant registry for container images and OCI artifacts used by a lot of projects. When tools are configured to access it, they often do so with credentials to access private content or to push content. And that happens using the OCI APIs and the token auth workflow currently defined by the distribution project. ...