Savio Dsouza

**Name of the Vulnerable Software and Affected Versions** OWASP BLT versions prior to 2.1.1 **Description** An issue exists in the '.github/workflows/regenerate-migrations.yml' workflow where the 'pull request target' trigger runs with full `GITHUB TOKEN` write permissions. The workflow copies files from untrusted pull requests into the trusted runner workspace using 'git show' and executes 'python manage.py makemigrations'. This process imports Django model modules, including an attacker-controlled `website/models.py`, at runtime. Any module-level Python code within the attacker's `models.py` is executed during import, allowing arbitrary code execution in the privileged CI environment. This provides access to the `GITHUB TOKEN` and repository secrets. The issue can be triggered by an external contributor opening a pull request if a maintainer applies the 'regenerate-migrations' label, which may lead to secret exfiltration, repository compromise, and supply chain attacks. This issue is under active exploitation. **Recommendations** Update to version 2.1.1.