communism@lemmy.ml to Open Source@lemmy.ml · 4 months agoAnyone can Access Deleted and Private Repository Data on GitHubtrufflesecurity.comexternal-linkmessage-square28fedilinkarrow-up1234arrow-down110cross-posted to: technology@lemmy.worldcybersecurity@sh.itjust.workshackernews@lemmy.smeargle.fans
arrow-up1224arrow-down1external-linkAnyone can Access Deleted and Private Repository Data on GitHubtrufflesecurity.comcommunism@lemmy.ml to Open Source@lemmy.ml · 4 months agomessage-square28fedilinkcross-posted to: technology@lemmy.worldcybersecurity@sh.itjust.workshackernews@lemmy.smeargle.fans
minus-squareShadow@lemmy.calinkfedilinkarrow-up12arrow-down3·4 months agoYeah, pretty much everyone agrees that once something goes to git it lasts forever. The fact they call out that secret keys must be rotated if committed, makes me think they thought just deleting a commit was enough 🤦
Yeah, pretty much everyone agrees that once something goes to git it lasts forever.
The fact they call out that secret keys must be rotated if committed, makes me think they thought just deleting a commit was enough 🤦