all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Secrets management: What should be a logical response to "but this is a private repo"

Add to bookmarks
May 6, 2023, 6:55 p.m. | /u/baadditor

cybersecurity www.reddit.com

I have found a private key checked into a GitHub repository and I raised this with my lead and he waslikeb yeah that's bad we need to vault for this but immediately he asked but it's in a Private repo... unless GitHub is breached.. how could this be a thread!. I came up with generic response like this is Cloned onto devs laptops and we need to reduce the surface area! But I felt I couldn't answer his question well. …

bad breached cybersecurity github key management private private key repo repository response secrets secrets management vault

Visit resource

More from www.reddit.com / cybersecurity

What are the pros and cons of virtual patching? 2 hours ago | www.reddit.com
cons cybersecurity patching virtual +1
Cybersec is the best career to get into in 2024.Change my mind. 3 hours ago | www.reddit.com
career change cybersec cybersecurity +14
CVE question 15 hours ago | www.reddit.com
api cve cybersecurity dashboard +10
Best Practices for Setting Up an Enterprise Simulation Network 18 hours ago | www.reddit.com
best practices cybersecurity ediscovery enterprise +15
how hard do you think is it to get into penetration testing nowadays 19 hours ago | www.reddit.com
cybersecurity hard penetration penetration testing +1
Building an SOC From Scratch: The Importance of Documentation and Network Segmentation 20 hours ago | www.reddit.com
analyst antivirus bank building +23
The Risks of Scattered Logs and Why Centralised SIEM Is Better for Security 22 hours ago | www.reddit.com
companies cybersecurity event event management +21
How-To Install and Setup: Azure Arc, (AMA) Azure Monitor Agent and (DCR) Data Collection Rules … 1 day, 1 hour ago | www.reddit.com
agent ama arc article +28
Iranian hackers pose as journalists to push backdoor malware 1 day, 1 hour ago | www.reddit.com
backdoor cybersecurity hackers iranian +3

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens
View on infosec-jobs.com

Cryptography Software Developer

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Lead Consultant, Geology

@ WSP | Richmond, VA, United States
View on infosec-jobs.com

BISO Cybersecurity Director

@ ABM Industries | Alpharetta, GA, United States
View on infosec-jobs.com
View more jobs