Are Cybersecurity Posts on LinkedIn Used for Humble Bragging and Quoting Each Other?

The author of the post notes that many "researchers" are publishing on LinkedIn about compromised GitHub actions tj-actions, and that their research is often a variant of others' publications. As a defender, the author finds that some of their advice, such as pinning each action, is unrealistic, particularly due to the difficulty of implementing such changes in a large organization.