RepoJacking is a security vulnerability that may lead to code execution on organizations’ internal or customer environments. Millions of GitHub repositories are potentially vulnerable to it, including popular organizations such as Google and Lyft.
Source: cyware.com