potiuk commented on issue #42031: URL: https://github.com/apache/airflow/issues/42031#issuecomment-2331744545
Yes. This is something we discuss in security groups (various) - there are currently very active actors with sophisticated methods where GitHub issues and PRs are getting used example here: https://socket.dev/blog/github-users-targeted-by-new-wave-of-spambots-promoting-malicious-downloads I will write an email to devlist for people to be aware of it. The best we can do (I just did it) is to report such attempts to Github via "Report" button. This can be done pretty easily and they react rather quickly -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
