CISA GitHub credentials exposure
Key Questions
What credentials were exposed in the CISA GitHub incident?
A public GitHub repository exposed sensitive CISA credentials, including AWS GovCloud keys. The exposure was discovered by a GitGuardian researcher.
What actions have lawmakers taken regarding the CISA credential leak?
A senator has pressed CISA for answers about the repository exposure and the delayed rotation of compromised keys. Lawmakers are demanding a full account of the incident.
How was the CISA GitHub exposure initially detected?
Security researcher Guillaume Valadon of GitGuardian identified the publicly accessible repository containing the credentials. The finding prompted immediate scrutiny of CISA's repository management practices.
Senator probes after GitGuardian finds exposed creds; lawmakers demand answers on AWS GovCloud keys leak and delayed rotation.
Sources (2)
Updated May 23, 2026