Fragen? Antworten! Siehe auch: Alternativlos
In the Homebrew/homebrew-cask repository, it was possible to merge the malicious pull request by confusing the library that is used in the automated pull request review script developed by the Homebrew project.Unter uns? You had me at Ruby.
By abusing it, an attacker could execute arbitrary Ruby codes on users' machine who uses brew.