another "critical" vulnerability that's probably not gonna get fixed because someone's already exploited it. still waiting for more prioritization on securing open-source platforms https://www.wiz.io/blog/github-rce-vulnerability-cve-2026-3854