A few days ago, a toot on Mastodon from Andres, a Postgres developer, caught my attention:https://mastodon.social/@AndresFreundTec/112180083704606941Wait, what?!What happened here is now well documented elsewhere, so I shall not recap it much, but essentially somebody appears to have hijacked the open source XZ project by social engineering the volunteer developer into handing over maintainer access after they cited some mental health issues, used the package XZ Utils to piggy back into systemd ...