@dangoodin
CC'ing @Codeberg and @forgejo as well for awareness.
In the HN discussion about this issue #Codeberg is mentioned as probably too small for malicious actors to implement their scripts for, but it only needs one fellow having some extra time and expand their campaign.
https://news.ycombinator.com/item?id=39545676