Most folks around the world signed off. B-squad probably left cleaning up remaining tasks or just fucking around with co-workers and pondering the weekend. Most GH actions run on a schedule (ie, backups of db, connecting to blob storage services).
Attacker(s) likely to extract plenty of secrets and exfil data before the alarms get triggered (if any) at companies.
https://github.com/tj-actions/changed-files/tags?after=v35.9...
Most folks around the world signed off. B-squad probably left cleaning up remaining tasks or just fucking around with co-workers and pondering the weekend. Most GH actions run on a schedule (ie, backups of db, connecting to blob storage services).
Attacker(s) likely to extract plenty of secrets and exfil data before the alarms get triggered (if any) at companies.
The next data dumps are going to be wild.