Title basically

  • words_number
    link
    fedilink
    English
    arrow-up
    25
    ·
    2 years ago

    GitHub pushed API keys to GitHub themself once, so you’re not alone xD

    • 𝘋𝘪𝘳𝘬@lemmy.ml
      link
      fedilink
      English
      arrow-up
      8
      ·
      2 years ago

      Wasn’t this the reason they built the system to protect you from this by defining secrets not to be pushed?

      • StudioLE
        link
        fedilink
        English
        arrow-up
        9
        ·
        2 years ago

        Is this like when Facebook suggested you upload all your nudes so they can tell you if your sensitive photos are ever leaked.

  • RangerHere
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    2 years ago

    The worst case of this I heard was a crypto developer that lost 300k$ of clients money when he accidentally pushed some crypto keys to GitHub public repository. Last I heard he was getting sued.

  • Kettlepants@lemm.ee
    link
    fedilink
    English
    arrow-up
    3
    ·
    2 years ago

    Image not visible, link missing when opening thread.

    I know it’s not you, it’s me. But yeah. No idea what the image is, can’t copy paste from home thread.

  • eltimablo@kbin.social
    link
    fedilink
    arrow-up
    2
    ·
    2 years ago

    Reminds me of the time I forgot to lock the Ansible vault before pushing my new playbook to production. Thankfully my boss caught it and was able to scrub the commit, but I still got a very, very stern talking-to.

  • thiccdiccnicc@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    2 years ago

    Did this for the first time yesterday 😅

    And of course I had an instant watcher on my repo yet I never had one before, lol