Also, it is interesting to observe the strong reaction by so many to this exploitation of the #OpenSource supply chain. Of course, it shows a weakness in the model of trust for maintainership. There are big questions to answer. What if this had not been stopped as early as it was? What if it breached #EnterpriseLinux?
Yet at the same time, the most practical way this could have been discovered is the #FreeSoftware way. Someone was literally testing a database and said "huh this is odd."