惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

GbyAI
GbyAI
博客园 - 三生石上(FineUI控件)
S
Securelist
U
Unit 42
The Cloudflare Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Simon Willison's Weblog
Simon Willison's Weblog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
B
Blog
T
Tenable Blog
The Hacker News
The Hacker News
The Register - Security
The Register - Security
IT之家
IT之家
博客园 - 【当耐特】
Spread Privacy
Spread Privacy
P
Privacy & Cybersecurity Law Blog
博客园_首页
T
Tailwind CSS Blog
人人都是产品经理
人人都是产品经理
C
Cybersecurity and Infrastructure Security Agency CISA
Know Your Adversary
Know Your Adversary
NISL@THU
NISL@THU
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
阮一峰的网络日志
阮一峰的网络日志
T
Tor Project blog
C
CERT Recently Published Vulnerability Notes
Apple Machine Learning Research
Apple Machine Learning Research
Stack Overflow Blog
Stack Overflow Blog
T
Threat Research - Cisco Blogs
T
The Exploit Database - CXSecurity.com
V
Vulnerabilities – Threatpost
A
Arctic Wolf
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
V
V2EX
aimingoo的专栏
aimingoo的专栏
大猫的无限游戏
大猫的无限游戏
Scott Helme
Scott Helme
L
LINUX DO - 热门话题
Cyberwarzone
Cyberwarzone
V
Visual Studio Blog
月光博客
月光博客
爱范儿
爱范儿
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
美团技术团队
G
GRAHAM CLULEY
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
H
Heimdal Security Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO

Nx Blog

Sharing Tailwind CSS Styles Across Apps in a Monorepo | Nx Blog How SiriusXM Stays Competitive by Iterating and Getting to Market Fast | Nx Blog Agentic Experience Is the New Developer Experience | Nx Blog Nx Joins the Linux Foundation and the Agentic AI Foundation | Nx Blog A Monorepo Is NOT a Monolith | Nx Blog Why we deleted (most of) our MCP tools | Nx Blog Teach Your AI Agent How to Work in a Monorepo | Nx Blog How Broadcom stays efficient and nimble with monorepos | Nx Blog Why Monorepos are King in the Age of AI | Nx Blog Nx 2026 Roadmap: Expanding Agent Autonomy, Improving Performance, Better Polyglot and More | Nx Blog End to End Autonomous AI Agent Workflows with Nx | Nx Blog Autonomous Agents at Scale | Nx Blog Scaling 700+ Projects: How Nx Became a 'No-Brainer' for Caseware | Nx Blog Configure Tailwind v4 with Angular in an Nx Monorepo | Nx Blog The Missing Multiplier for AI Agent Productivity | Nx Blog A Year of Nx Webinars | Nx Blog Wrapping Up 2025 | Nx Blog Nx 22.3 Release: Angular 21 Support, tsgo Compiler, and Prettier v3 | Nx Blog Nx Cloud Release: Agent Resource Usage | Nx Blog Nx Platform Outperforms DIY Cache by 5x | Nx Blog An Nx Carol: Past, Present, and Future of Your Monorepo | Nx Blog Nx 22.1 Release: Terminal UI on Windows, Storybook 10, Vitest 4, and more! | Nx Blog The Compounding Effect: How Nx Features Multiply Performance Gains | Nx Blog 10 Monorepo Myths Debunked: Separating Fact from Fiction | Nx Blog Nx Cloud Release: Enterprise Task Analytics | Nx Blog Watch and Rebuild Storybook Dependencies with Nx | Nx Blog Book - React for Enterprise: Timeless Architecture for Enterprise Apps | Nx Blog Beyond Remote Cache: Unlock 70% More CI Performance | Nx Blog Nx 22 Release: Expanding the build platform | Nx Blog What's the Point of Generating All This Code If You Can't Merge It? | Nx Blog What's New in Nx Self-Healing CI | Nx Blog Nx Highlights: Smarter AI integration, all-new graph UI, and big new versions of your favorite tools | Nx Blog Making the Case for Smarter Monorepos, and How to Not Get Fooled by Myths | Nx Blog Integrating Biome in 20 Minutes | Nx Blog S1ngularity - What Happened, How We Responded, What We Learned | Nx Blog Stop Babysitting Your PRs: Self-Healing CI Cuts Time to Green by 50% | Nx Blog UKG Unifies Their Codebase and Eliminates CI Overhead to Focus on Customer Value | Nx Blog How Git Worktrees Changed My AI Agent Workflow | Nx Blog Nx Cloud Workspace Graph: See Your Organization's Code Structure Like Never Before | Nx Blog Seamless Java Deployment in Nx Using Docker | Nx Blog Getting Mobile Into Your Monorepo: Android + Nx | Nx Blog Polyglot Projects Made Easy: Integrating Spring Boot into an Nx Workspace | Nx Blog The Journey of the Nx Plugin for Gradle: From Prototype to Production | Nx Blog Combining Predictability and Intelligence With Nx Generators and AI | Nx Blog A New UI For The Humble Terminal | Nx Blog Continuous tasks are a huge DX improvement | Nx Blog New and Improved Module Federation Experience with Nx | Nx Blog A New UI for Nx Migration | Nx Blog Custom Task Runners and Self-Hosted Caching Changes | Nx Blog Enterprise Angular Monorepo Patterns | Nx Blog Using Rspack with Angular | Nx Blog Angular Architecture Guide To Building Maintainable Applications at Scale | Nx Blog Modern Angular Testing with Nx | Nx Blog Nx Update: 20.5 | Nx Blog Are Monorepos the Answer to Better AI-Assisted Development? | Nx Blog Making Cursor Smarter with an MCP Server For Nx Monorepos | Nx Blog React Development for 2025 | Nx Blog Using Apollo GraphQL in an Nx Workspace | Nx Blog Angular State Management for 2025 | Nx Blog Tailoring Nx for Your Organization | Nx Blog Nx Cloud Pipelines Come To Nx Console | Nx Blog Define the relationship with monorepos | Nx Blog See your affected project graph in Nx Cloud | Nx Blog Handling CORS In Your Workspace | Nx Blog Improve your architecture and CI pipeline times with Nx projects | Nx Blog Announcing Nx 20 | Nx Blog Introducing Nx Powerpack | Nx Blog Nx 19.5 is here! Stackblitz, Bun, Incremental Builds for Vite, Gradle Test Atomizer | Nx Blog Introducing Explain with AI | Nx Blog Nx Enterprise Podcast Episode 2: Tine Kondo | Nx Blog Monorepos and CI can be a Mess - Here's How Nx and Nx Cloud Fixed It | Nx Blog Nx Enterprise Podcast Episode 1: Hicham El Hammouchi | Nx Blog Nx 19.0 Release!! | Nx Blog Manage Your Gradle Project using Nx | Nx Blog Making the Argument for Monorepos | Nx Blog Reliable CI. A new execution model fixing both flakiness and slowness | Nx Blog Monorepos - Why Speed Matters | Nx Blog Nx Agents Walkthrough: Effortlessly Fast CI Built for Monorepos | Nx Blog Launch Nx Week Recap | Nx Blog Versioning and Releasing Packages in a Monorepo | Nx Blog Fast, Effortless CI | Nx Blog Introducing @nx/nuxt Enhanced Nuxt.js Support in Nx | Nx Blog What if Nx Plugins Were More Like VSCode Extensions | Nx Blog Monorepos: the Benefits, Challenges, and Importance of Tooling Support | Nx Blog Nx — Highlights of 2023 | Nx Blog Nx 17.2 Update | Nx Blog Unit Testing Expo Apps With Jest | Nx Blog Nx Docs AI Assistant | Nx Blog State Management Nx React Native/Expo Apps with TanStack Query and Redux | Nx Blog Nx 17 has Landed | Nx Blog Nx Conf 2023 — Recap | Nx Blog Nx Raises $16M Series A | Nx Blog Introducing Playwright Support for Nx | Nx Blog Nx 16.8 Release!!! | Nx Blog Step-by-Step Guide to Creating an Expo Monorepo with Nx | Nx Blog Qwikify your Development with Nx | Nx Blog Create Your Own create-react-app CLI | Nx Blog Storybook Interaction Tests in Nx | Nx Blog Evergreen Tooling — More than Just CodeMods | Nx Blog A Practical Guide on Effective AI Use - AI as Your Peer Programmer | Nx Blog
Is Your Build Cache Giving Every Developer Production Access? | Nx Blog
Victor Savkin · 2025-06-26 · via Nx Blog

Build systems with remote caching make CI/CD pipelines fast. Very fast. They are essential for scaling modern software development.

They can also grant every developer write access to production.

Organizations invest millions in security infrastructure. Firewalls. Access controls. Code reviews. But their remote cache can create a bypass to all of it. Any PR author can inject code into production artifacts.

CREEP Vulnerability Overview

This isn't new. Compromised low-privilege access has enabled devastating breaches:

  • Target (2013): HVAC contractor credentials → 40 million credit cards exposed
  • SolarWinds (2020): Poisoned build pipeline → 18,000 organizations compromised
  • Codecov (2021): Malicious build artifacts → Hundreds of environments breached

In each case, attackers turned trusted build processes into deployment pipelines for malicious code.

If you use a build system with remote caching, assume you're affected. This isn't hyperbole. Most organizations are unknowingly giving every PR author the power to poison production without leaving a trace.

Understanding Remote Cache

Any sophisticated build system uses remote caching to improve performance. Here's how it works:

  1. The build system examines all input files and creates a hash representing their current state
  2. It checks if an artifact with this hash already exists in the cache
  3. If found, it downloads the pre-built artifact (takes seconds)
  4. If not found, it builds the artifact and uploads it to the cache (takes minutes)

The key insight: as long as the input files remain the same, the output will be identical. So why build twice?

For large repositories, this dramatically improves both build speed and reliability. A process that took 10 minutes now completes in seconds.

Remote Cache Workflow

The CREEP Vulnerability

CREEP (Cache Race-condition Exploit Enables Poisoning), published as CVE-2025-36852 has a severity score of 9.4, because it exploits a fundamental flaw in how organizations implement remote caching.

The vulnerability hinges on a simple but critical distinction:

  • Trusted environments (like your main branch): Require code reviews, leave audit trails, and deploy to production (or create artifacts that can be deployed to production)
  • Untrusted environments (like pull requests): Can be created by anyone, modified without approval, and cleaned up without trace

The golden rule of security is that untrusted environments should never affect trusted ones. CREEP violates this rule by exploiting a race condition between the main branch and a pull request. When both have identical source files and attempt to build an application and write to the same remote cache slot, whichever completes first becomes the source of truth, allowing untrusted code to poison the cache used by trusted environments.

How the Attack Works

Meet Sarah, a developer with PR access who just learned she's being passed over for promotion. In one morning, she'll turn your build cache into a backdoor to production.

Step 1: Monitor and Mirror

Sarah creates an innocent-looking branch from the main branch:

git fetch origin main
git checkout main
git pull
git checkout -b feature/innocent-looking-update

Step 2: Inject Malicious Code

Here's where it gets clever. She modifies the CI script in her PR environment. She rearranges steps to run the build earlier, then modifies the build step to produce poisoned output:

# Modified .github/workflows/build.yml
- name: Patch build tools
  run: ./patch-webpack.sh node_modules/webpack
- name: Build
  run: npm run build

The patch script? It monkey patches webpack to inject her backdoor during compilation. Same inputs, poisoned output.

Step 3: Race to Cache

She triggers her PR build. The simplified build pipeline finishes in just a minute, while the legit build was still validating its checks so her poisoned build completes first and writes to the cache.

Step 4: Automatic Deployment

The main branch build runs. It calculates the source file hash and finds a matching artifact in cache (Sarah's poisoned one). The build system skips building and uses the cached artifact instead. The compromised build artifact gets promoted to production.

The build system just saved 10 minutes. It also just deployed Sarah's backdoor.

Step 5: Cover Tracks

Sarah erases all evidence:

# Remove all evidence
git push --force origin feature/innocent-looking-update

# Delete the branch entirely
git push origin --delete feature/innocent-looking-update

To anyone looking, it's just another accidentally-opened PR that was quickly closed. Happens every day.

Two weeks later, Sarah leaves on good terms. Months later, when customer data starts leaking, nobody connects it to a deleted PR from an ex-employee. The artifact has all the right signatures and came from the official pipeline.

Attack Timeline

The Critical Question: "But What About Input Hashing?"

Many developers assume input file hashing prevents this attack. Wouldn't injecting malicious code invalidate the hash? Here's why they're wrong:

Your build process looks like this:

Normal Build Process

The hash covers the inputs. It doesn't control what happens inside the tool. An attacker transforms this into:

Poisoned Build Process

Same inputs. Same hash. Poisoned output. This can be done with absolutely any tool (WebPack, Javac etc). Even "hermetic" build systems invoke system binaries. Modify your CI configuration to swap legitimate tools with compromised versions, and you can create whatever output you want.

But there is an even easier way to do it: Concurrently modifying the build output folder

Most tools write to a staging directory before creating the final artifact. The attacker can run a concurrent process that modifies files after the build but before packaging:

# Build process writes to ./dist
npm run build &

# Simultaneously modify the output
while [ ! -f ./dist/main.js ]; do sleep 0.1; done
echo "malicious_code()" >> ./dist/main.js

The build system still reports success. The hash still matches. The artifact is poisoned.

Concurrent Modification Attack

The Uncomfortable Truth: Your Biggest Threat Has a Badge

You might be thinking: "This requires PR access. These are our employees. We trust our team."

But consider who has PR access in your organization: The developer passed over for promotion. The engineer who disagrees with your company's new direction. The contractor whose contract wasn't renewed. Even that intern from last summer.

Even small teams aren't immune, but for large organizations, it's a numbers game. With 13-20% annual turnover in tech, you're constantly cycling through developers. How many people have PR access across your repositories? The number might shock you.

The Time Bomb Factor

Here's what should keep you up at night: This attack doesn't require immediate action.

Someone can:

  1. Plant the poisoned artifact today
  2. Leave the company on good terms next week
  3. Watch the damage unfold six months later
  4. Leave zero trace connecting them to the incident

Imagine your company's homepage replaced with offensive content or customer data leaking through a build artifact from eight months ago. The employee responsible? They left a long time ago. Their branch? Deleted. Their commits? Force-pushed away.

The reputation damage is permanent. The responsible party is untraceable.

Why Traditional Security Measures Fail

If you're thinking that your existing security measures should catch this, let's move into the specifics about why they won't. Traditional security measures are designed to protect artifacts during storage or transmission. In this case, the attack happens earlier, during artifact creation.

The problem is the build tool itself. It's a black box, and there's no way to independently verify whether the output is correct or safe. Whatever the tool produces is implicitly trusted. Traditional security models assume a valid artifact that might get compromised later. But here, the artifact is malicious from the start.

It's like poisoning food while it's being cooked, not during delivery. Your security stack ( encryption, access controls, checksums) focuses on the delivery truck, not the kitchen.

  • Encryption: Flawlessly encrypts and decrypts the poisoned artifact
  • Access controls: Bypassed because the attacker uses legitimate access, like opening a PR
  • Checksums: All match, because the checksum is calculated after the poison is added
  • Audit logs: Show only authorized, expected operations

Protecting Your Organization

Most organizations have three options:

Option 1: Unsafe and Fast

Untrusted environments can write to the cache used by trusted environments. This means you are affected by the CREEP vulnerability described here.

Option 2: Safe but Slow (aka Disable Cache)

Disable cache writes from untrusted environments entirely. PRs can read from cache but never write to it. This is secure but eliminates most performance benefits of build systems—every PR rebuild starts from scratch. Note that some popular build systems don't even support this option.

Option 3: Safe and Fast

Implement a multi-tiered cache system:

  • Trusted environments (main branch) write to a protected cache
  • Each PR gets its own isolated cache namespace
  • PRs can read from the trusted cache but write only to their isolated space

Unfortunately, many popular build systems don't offer this as an option. Implementing secure multi-tier caching is complex—it must detect and prevent PRs from impersonating trusted branches, requiring deep integration with both version control and CI systems. The remote cache provided by Nx Cloud is in this category.

Picking the Right Option

We've been advocating for using build systems with remote cache for a long time. We built one. But it needs to be done securely and every organization needs to assess the risks.

Option 1 suits only small teams where everyone already has production access. The security model matches their existing permissions.

Option 2 works when CI performance isn't critical. You trade speed for security—acceptable if you can afford the productivity cost.

Option 3 becomes essential at enterprise scale. With hundreds of developers and strict compliance requirements, you need both security and performance. Remember, CREEP turns every PR author into a de-facto production admin. Using Option 1 for such organizations is a critical compliance failure.

Our analysis reveals:

  • Major build tools (across popular stacks and platforms) either don't support secure caching or make it inefficient
  • The vast majority of organizations unknowingly default to Option 1, leaving them vulnerable
  • Popular open-source projects expose their contributors to the same risk

That's why we recommend that all teams using build systems with remote cache to audit their exposure right away. The threat is severe.

For Nx users, using Nx Cloud:
Nx Cloud implements a multi-tiered cache (i.e., it's both safe and fast), so no action is required. Continue following security best practices for your CI/CD pipeline

For Nx users, using self-hosted remote cache:
Any implementation that writes directly to S3, GCS, Azure, including the packages Nx provides, doesn't support Option 3. They are all vulnerable to the CREEP vulnerability. If you aren't sure, assume you are vulnerable. Immediately switch to Option 2 (Safe but Slow): write to cache from the main branch, not from PRs. This will negatively affect performance but will make your setup safe. Use Nx Cloud or another provider that offers a multi-tier cache implementation to get the cache that is both fast and secure.

Other build systems and other remote cache solutions for Nx we are aware of are also vulnerable to the CREEP vulnerability.

Wrapping Up

Remote caching is critical for build performance, but we need to treat it with the same rigor we apply to production access.

If you have questions about assessing your exposure or implementing secure caching, reach out to our team.


Learn more: