Supply-chain attack exposing credentials affects 23K users of tj-actions
Open-source software used by more than 23,000 organizations, some of them in large enterprises, was compromised with credential-stealing code after attackers gained unauthorized access to a maintainer ...