From the Graham Cluley blog
Platform engineer and open source enthusiast Rob Dyke says that he’s found himself in a sticky pickle.
You see, in late February he discovered two public repositories on Github which contained code for an application, API keys, usernames nad passwords, and a database dump. Anyone in the world could access the sensitive information.
What’s really bad, however, is how the organisation responded when he told them about the problem.