I wonder what the most damaging or profitable thing to forge the signing key for would be on GH. Probably some wallet with large/frequent transactions and automatic updates.

We should all be moving off GH and onto Radicle.xyz the moment MS bought Github.

I'd be interested to hear from anyone working in security here

This link was posted by ColinWright 37 minutes ago on HN. It received 70 points and 24 comments.