Public CVE-2023-42448 disclosure

Malicious head initialiser can extract PTs from control of Hydra scripts, leading to locked participant commits or spoofed commits