GitHub Action Hack Likely Led to Another in Cascading Supply Chain Attack

A GitHub Action hack likely led to another attack in a cascading supply chain attack. This attack targeted an open-source project, thereby compromising downstream users. The initial attack vector was a malicious GitHub Action.