github-windows: URLs could be crafted, leading to arbitrary remote code execution. Only certain browsers would handle these URLs in a way that would lead to code execution. This vulnerability was fixed in version 2.14.7 of the GitHub for Windows application.