How a Single GitHub Issue Title Silently Pwned 4,000 Developer Machines
What started as an innocent-looking GitHub issue turned into one of the most clever supply chain attacks I’ve seen this year. Here’s how a simple title compromised thousands of developer workstations.