simonecorsi/mawesome GitHub Action has been compromised

ON June 24, 2026, the simonecorsi/mawesome GitHub repository was compromised by an attacker who force-pushed malicious commits and altered version tags. This resulted in the execution of the attacker's code in workflows utilizing those tags. This incident is similar to the earlier compromise of the codfish/semantic-release-action GitHub repository on the same day. The situation continues to develop and further information may emerge.