Security alert: Attack campaign involving stolen OAuth user tokens issued to two third-party integrators 12 April 2022 https://github.blog/2022-04-15-security-alert-stolen-oauth-user-tokens/ PS: I've tried to search the forum about this issue, but I couldn't find related posting.