I have a feeling CVE-2025-30066 could have been prevented if the "tj-actions/changed-files" had the repository tag protection setting and the stolen PAT wasn't overprivileged.

Microsoft Edge is missing an opportunity here. Just keep V2 manifest support and get all uBlock Origin users fleeing Chrome news.ycombinator.com/item?id=4320...