Boost Security released SmokedMeat, an open-source framework that runs live attack chains against CI/CD pipelines to show engineering and security teams exactly how a flagged pipeline vulnerability can be exploited. Starting from a single vulnerability, SmokedMeat deploys payloads, compromises runners, harvests credentials from process memory, exchanges them for cloud access, and maps the blast radius—highlighting risks demonstrated by the TeamPCP campaign. #SmokedMeat #TeamPCP
Keypoints
- SmokedMeat executes live attack chains against a team’s actual CI/CD infrastructure to demonstrate real-world impact.
- It turns a flagged pipeline vulnerability into a full exploit by deploying payloads and compromising runners.
- The tool harvests credentials from process memory and exchanges them for cloud access to pivot further.
- The TeamPCP campaign illustrated how unpatched CI/CD issues can cascade across supply chains.
- SmokedMeat is open source and available on GitHub to help teams prioritize remediation with concrete demonstrations.
Read More: https://www.helpnetsecurity.com/2026/04/20/smokedmeat-ci-cd-pipeline-attacks/