this post was submitted on 27 Nov 2025
8 points (90.0% liked)

GitHub

255 readers
1 users here now

A community for discussion and posts relating to github https://github.com/

founded 2 years ago
MODERATORS
pylapp@programming.dev
8
Secrets in unlisted GitHub gists are reported to secret scanning partners (github.blog)
submitted 3 days ago by nemeski@mander.xyz to c/github@programming.dev
1 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Kissaki@programming.dev 2 points 3 days ago

IMO the intro “[shared] to the respective secret scanning partner” is a bit misleading because it can be read as third parties unrelated to the secret that do secret scanning. The text later on only mentions the issuer of secrets, though.

To protect the developer community, GitHub partners with hundreds of secret scanning partners to identify leaked secrets.

GitHub works directly with industry partners like AWS, OpenAI, and Stripe to build detectors for their specific secret formats […]
GitHub notifies the secret issuer when publicly leaked secrets are found, allowing the partner to take immediate action.