GitHub confirms breach — thousands of internal repositories hit

TeamPCP continues its attack on open source projects, now apparently asking for $50,000.

US agency warns of supply chain threats to DevOps and cloud tools

CISA warns that GitHub repos are being abused via a malicious Nx Console Visual Studio Code extension.