A supply chain attack dubbed ForceMemo is using stolen GitHub tokens to inject malware into hundreds of Python repositories, targeting projects ranging from Django applications and machine learning ...