CVE-2026-27701
LiveCode vulnerability CVE-2026-27701 affects the i18n-update-pull GitHub Actions workflow. Before commit e151c64c2bd80d2d53ac1333f1df9429fe6a1a11, the PR title is interpolated into a GitHub Script block, allowing an attacker who opens a PR with a crafted title to inject JavaScript that runs with...