Sarcastically: Nothing says ethical like including a full unredacted router MAC address for an unwitting third party in a repo’s screenshots. I suppose one silver lining is that the author provided enough evidence to pinpoint their location to +/-50m.
Much better to heavily spread those libraries so we actually build secure systems instead of "praying" that some people just don't act maliciously. Knowledge shouldn't be closed as well.