Thanks Floris.
Yes, please go ahead and contact the user.
I've posted a thread about this for the Core team in the pytest-dev
Discussions, just for reference:
https://github.com/orgs/pytest-dev/teams/core/discussions/23
Cheers,
Bruno.
On Thu, Dec 8, 2022 at 10:18 AM Floris Bruynooghe wrote:
Hi folks,
Github recently sent an email warning of a member of the pytest-dev org
(I'm purposefully not adding identifiable information here) likely
having a compromised API token that may have been abused. The member in
question only has read access to all but one plugin repository so the
