DigiNews

Summary

A GitHub discussion reports that Mantine DataTable maintainer's account was suspended after unauthorized commits were pushed to the repository via a GitHub Actions bot. The malicious commits injected a payload runner into multiple config files and could trigger when opening the project in various IDEs. The post notes that published npm packages were safe, cites a broader GitHub infrastructure breach (TeamPCP) in May 2026, and describes the plan to regain access and revert the commits once GitHub responds.