Comment by croemer

Maintainer replied here https://github.com/axios/axios/discussions/10612

> nope this was just someone bombing the repo throught the API it seemd

> i then just closed and deleted them with a script.. seems it is happening with a couple repos, blocked the users who were doing this

I think it could well have been the attacker trying to hiding any notifications of suspicious activity (email address changed, suspicious login) in the flurry of issue related emails.