Hosted on MSN12mon
Mintlify says customer GitHub tokens exposed in data breach
D ocumentation startup Mintlify says dozens of customers had GitHub tokens exposed in a data breach at the start of the month and publicly disclosed last week. Mintlify helps developers create ...
Cybernews4d
23 million secrets spilled on GitHub, developers naively assume no one will know
A single hardcoded password is like leaving a digital landmine. Still, developers remain trapped in a false sense of security.
TechCrunch on MSN18d
Thousands of exposed GitHub repos, now private, can still be accessed through Copilot
For some affected companies, Copilot could be prompted to return confidential GitHub archives that contain intellectual property, sensitive corporate data, access keys, and tokens, the company said.
GIGAZINE13d
It was pointed out that repositories that were supposed to be private on GitHub were made public through Microsoft's AI assistant 'Copilot'
Some of these repositories were thought to have been made private due to security concerns, such as those containing private tokens and secret keys from GitHub, HuggingFace, and OpenAI.
GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation
Most concerning for enterprise security leaders: 70% of secrets leaked in 2022 remain active today, creating an expanding ...
Copilot exposes private GitHub pages, some removed by Microsoft
Microsoft’s Copilot AI assistant is exposing the contents of more than 20,000 private GitHub repositories from companies including Google, Intel, Huawei, PayPal, IBM, Tencent and, ironically, ...
Gemini Code Assist expands to all free-tier users
Google Gemini offers free Code Assist for individual users, bringing AI coding assistance to smaller developers too. Gemini also surpasses GitHub Copilot with 180,000 code completions per month and a ...