GitHub na faʻasalalau le faʻalauiloaina o se auaunaga e leai se totogi e siaki ai faʻasalalauga faʻafuaseʻi o faʻamatalaga maʻaleʻale i fale teu oloa, e pei o faʻailoga faʻailoga, DBMS passwords ma API access tokens. I le taimi muamua, o lenei 'auʻaunaga na avanoa mo naʻo tagata auai i le polokalame suʻega beta, ae o lea ua amata ona tuʻuina atu e aunoa ma se faʻatapulaʻaina i faleoloa uma. Ina ia mafai ona suʻesuʻeina lau fale teu oloa, i totonu o faʻatulagaga i le vaega o le "Code security and analysis", e tatau ona e faʻagaoioia le filifiliga "Secret scanning".
I le aofaʻi, e sili atu i le 200 faʻataʻitaʻiga ua faʻatinoina e iloa ai ituaiga eseese o ki, faʻailoga, tusi pasi ma faʻamaoniga. O le suʻesuʻeina o leaks e faia e le gata i le code, ae faʻapea foi i mataupu, faʻamatalaga ma faʻamatalaga. Ina ia faʻaumatia mea sese, naʻo ituaiga faʻamaonia faʻamaonia e siakiina, e aofia ai le sili atu i le 100 auaunaga eseese, e aofia ai Amazon Web Services, Azure, Crates.io, DigitalOcean, Google Cloud, NPM, PyPI, RubyGems ma Yandex.Cloud. E le gata i lea, e lagolagoina le auina atu o faʻasalalauga pe a iloa tusi pasi ma ki na sainia e le tagata lava ia.
Ia Ianuari, na suʻesuʻeina e le suʻega 14 afe fale teu oloa e faʻaaoga ai GitHub Actions. O le iʻuga, o le i ai o faʻamatalaga faalilolilo na maua i le 1110 repositories (7.9%, o lona uiga, toetoe lava sefululua uma). Mo se faʻataʻitaʻiga, 692 GitHub App faʻailoga, 155 Azure Storage ki, 155 GitHub Personal tokens, 120 Amazon AWS ki, ma 50 Google API ki na faʻaalia i totonu o faleoloa.
puna: opennet.ru