Repository unarchived

Detects whether a repository has been unarchived.

A malicious attacker could potentially include new malicious code in the repository and publish a new version to be generally available for all the current users. After that, they probably would update to the new version affected by the malicious code.

A repository which unexpectedly gets unarchived may indicate the start of the preparation stage for subsequent malicious actions, and it could increase the risk of security breaches, intellectual property theft, compliance violations and reputation damage.

This detector is supported by the following sensors: