Waydev

Waydev operates as a Git analytics firm, providing services that analyze software development workflows and repository activity for organizations utilizing DevOps practices. The company's core product integrates with major source code platforms, specifically GitHub and GitLab, using OAuth applications to access and process repository data. This integration allows Waydev to deliver insights into engineering team performance, code contribution metrics, and development pipeline efficiency for its corporate clients. The service is positioned within the application performance monitoring and developer productivity software market, serving organizations that seek to measure and optimize their software development lifecycle. By connecting directly to version control systems, Waydev processes sensitive codebase and user activity data, establishing it as a vendor with access to significant proprietary information for its customers. The firm's business model relies on the secure handling of these OAuth tokens and repository metadata, making the integrity of its authentication and data protection mechanisms critical to its operations and client trust.

In July 2020, Waydev experienced a significant security incident when attackers exploited a blind SQL injection vulnerability within its internal systems. This exploit permitted the unauthorized extraction of database contents, including active OAuth tokens for GitHub and GitLab that belonged to Waydev's own customers. The stolen tokens were subsequently used to access the source code repositories of at least two other organizations, representing a supply-chain attack where Waydev's compromised credentials became the vector. Upon discovery, Waydev's incident response involved immediate remediation of the underlying SQL injection flaw, collaboration with GitHub and GitLab to revoke all affected OAuth tokens, and the deployment of new, secure OAuth applications. The company implemented enhanced security protocols going forward, which included the introduction of manual account approval processes and increased activity monitoring to detect anomalous behavior. Waydev also shared relevant threat indicators with authorities and its customer base to aid in forensic log analysis and broader community awareness. This event underscored the security risks associated with third-party analytics platforms that hold elevated access permissions to core development infrastructure.