Supply-Chain Attack Using Invisible Code Hits GitHub and Other Repositories, by @dangoodin.bsky.social (@arstechnica):
https://arstechnica.com/security/2026/03/supply-chain-attack-using-invisible-code-hits-github-and-other-repositories/
#security #github #dependencies
Unicode that's invisible to the human eye was largely abandoned—until attackers took notice.
Frontend Dogma