I opened a bug in an unrelated repo yesterday and nearly immediately got hit with one of those. Kinda wish I'd downloaded the zip before it got deleted. I'm curious what the attack was.

I ignored it because it wasn't a pull request or patch file, it came too fast, and the explanation misidentified the source of the problem.