Comment by progbits

Comment by progbits 6 days ago

0 replies

View on Hacker News

> no customer data was affected

Someone could have taken the private github key and cloned your customers' private repos.

You would need to audit every single access to github made via your app since the beginning and link it somehow to your side. Did you do this?