But this mystery isn’t over yet, Unit 42 opines
That massive GitHub supply chain attack that spilled secrets from countless projects? It traces back to a stolen token from a SpotBugs workflow – exposed way back in November, months earlier than previously suspected.…
This article has been indexed from The Register – Security