|
|
|
|
|
|
by holman
2058 days ago
|
|
|
Yeah, definitely. When I was at GitHub we were seeing secrets getting lifted from public pushes and tried within 7 seconds or so, if I recall correctly, and this was five years ago. This was a big reason why there’s a real scanning API now for service providers to be informed if a secret leaks. By the time a human discovers their mistake it’s usually far too late. |
|
|