[karrotwaltz]

Related topic: "Production AWS keys on GitHub" ~ 3 years ago

https://news.ycombinator.com/item?id=7411927

By just looking quickly, it seems that you can still find many recent live keys...

[dorianm]

Amazon scans GitHub and revokes valid keys (can't find source, but proof is that it's been a while no AWS keys were stolen from GitHub)

[tinco]

I have it on good authority ( >_> ) that this is indeed true.

[dotancohen]

I'm embarrassed to say that it's happened to me. I deliberately created an IAM user that was 'public', for purposes of the application. Amazon shut down that user and everything (not much) that it had access to. This was in 2014 or 2015.