Aqua Nautilus says once an attacker exploits a repository on GitHub, it could lead to code execution on an internal environment or on a customer’s systems.
Article Link: Millions of GitHub repositories potentially vulnerable to RepoJacking | SC Media