GitHub ya sanar da cewa ya ƙarfafa kariya daga mahimman bayanai waɗanda masu haɓakawa suka bar su ba da gangan ba a cikin lambar daga shigar da ma'ajiyar ta. Misali, yana faruwa cewa fayilolin sanyi tare da kalmomin shiga na DBMS, alamu ko maɓallan samun damar API sun ƙare a cikin ma'ajiyar. A baya can, ana yin sikanin a cikin yanayin da ba a so ba kuma an ba da damar gano leken asirin da ya riga ya faru kuma an haɗa su cikin ma'ajiyar. Don hana leaks, GitHub kuma ya fara ba da zaɓi don toshe ayyukan da suka ƙunshi bayanai masu mahimmanci ta atomatik.
Ana yin rajistan ne yayin tura git kuma yana haifar da haɓakar gargaɗin tsaro idan an gano alamun haɗin kai zuwa daidaitattun APIs a cikin lambar. An aiwatar da jimillar samfuri 69 don gano nau'ikan maɓalli, alamu, takaddun shaida da takaddun shaida. Don kawar da ƙiyayyar ƙarya, nau'ikan alamar lamuni kawai ana bincika. Bayan toshe, ana tambayar mai haɓakawa don duba lambar matsala, gyara ɗigogi, kuma sake ƙaddamarwa ko sanya toshe a matsayin ƙarya.
Zaɓin don toshe leaks a hankali yana samuwa ga ƙungiyoyi waɗanda ke da damar yin amfani da sabis na Tsaro na Ci gaba na GitHub. Binciken yanayin wucewa kyauta ne ga duk ma'ajiyar jama'a, amma ya rage a biya don ma'ajiyar sirri. An ba da rahoton cewa binciken sirri ya riga ya gano fiye da 700 na leaks na bayanan sirri a cikin ma'ajiyar sirri.
source: budenet.ru