[michaelfairley]

The "backwards-incompatible change" was part of a security fix, not an unrelated non-security change.

[badgar]

Github's code doesn't rely on the security flaw to function. Their code should keep working after the security fix.

Anyone who has ever consumed an API to build something they don't want to break understands this.