Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection - Flatt Security Research

https://flatt.tech/research/posts/compromising-openwrt-supply-chain-sha256-collision/