A broad round of fixes across JetBrains tools underscores how an authentication flaw or runtime bug can turn trusted developer software into a high-risk entry point.