The issue affects GitHub Agentic Workflows setups that read public input, hold private repo access, and can post output ...
Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results