- cross-posted to:
- hackernews@lemmy.smeargle.fans
- pulse_of_truth@infosec.pub
- cross-posted to:
- hackernews@lemmy.smeargle.fans
- pulse_of_truth@infosec.pub
“The GitHub token gave ‘unrestricted’ and ‘unmonitored’ access to the entire source code hosted at the internal GitHub Enterprise Server,” Mittal explained in a report shared by TechCrunch. “The repositories include a large amount of intellectual property… connection strings, cloud access keys, blueprints, design documents, [single sign-on] passwords, API Keys, and other critical internal information.”
You must log in or register to comment.