SECURITYDARK READING
CISA Exposes Secrets, Credentials in 'Private' Repo
The Cybersecurity and Infrastructure Security Agency's GitHub repository was publicly available since November 2025 and contained secrets and credentials despite being named 'Private-CISA'. This exposure is a significant security concern. The agency's mistake has raised questions about its ability to protect sensitive information.
Mentioned