Grafana Labs’ decision not to pay after attackers accessed its systems and downloaded its full code base highlights how source theft can turn into a long-term security problem.