Prevent GitHub CLI and extensions from executing arbitrary commands from compromised GitHub Enterprise Server
A security vulnerability has been identified in go-gh where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URLs provided by GitHub with local file paths for browsing.