How Attackers Could Dupe Developers into Downloading Malicious Code From GitHub

An interesting article, might be a concern but worth knowing about.