Over 100,000 GitHub repos have leaked API or cryptographic keys and thousands of new API or cryptographic keys leak via GitHub projects every day.
However, this is only a fraction of the true number of cases.
The findings in the article show that credential management in open-source software repositories is still challenging for novices and experts alike.
SecretHub has created a “dropbox for secrets” to solve this huge problem and has developed a developer tool that extracts secrets from IT automation scripts and centralizes them in the cloud for better collaboration.
Check out the article here: https://www.zdnet.com/google-amp/article/over-100000-github-repos-have-leaked-api-or-cryptographic-keys/