TECH NEWS

America's top cyber-defense agency left a GitHub repo open with passwords, keys, tokens – and incredibly obvious filenames

I wonder what's in 'external-secret-repo-creds.yaml' and 'AWS-Workspace-Firefox-Passwords.csv'?

The US Cybersecurity and Infrastructure Security Agency (CISA) left open a GitHub repository named “Private-CISA” containing plain-text passwords, private keys, tokens, and secrets – with obvious file names like “external-secret-repo-creds.yaml” and “AWS-Workspace-Firefox-Passwords.csv” – for six months.

GitGuardian researcher Guillaume Valadon, fresh off a recent talk on Kubernetes secret leaks, found the public repository on May 14, and told The Register that he “quickly understood that the leak was bad and that time was running out. A national agency having 844 MB of production infrastructure material in a public GitHub repository for six months is as serious as a secrets leak gets.”

Valadon, who previously spent nine years at France’s CISA equivalent, ANSSI, told us the leak included tokens for CISA's internal JFrog Artifactory, Azure registry keys, AWS credentials, Kubernetes manifests, ArgoCD application files, Terraform infrastructure code, GitHub personal access tokens, and Entra ID...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

https://techcrunch.com/wp-content/uploads/2026/05/GettyImages-2259661359.jpg?w=1024

SpaceX S-1: xAI had a $6.4B operating loss on $3.2B in revenue in 2025; Grok and X had 550M MAUs combined as of March 2026, and 117M used Grok's AI features

Sponsor Posts Niantic Spatial: World models need real-world data — Scaniverse is the gateway to spatial services — self-serve and built for AI and robotics. Large-area 3D reconstruction from 360° cameras and precise localization, anywhere machines operate. App Spotlight: Quo for Zoho CRM — App Spotlight brings you hand-picked solutions that enhance your

Microsoft Hired An Analyst With An Influential Video Game Blog To Fix Xbox

Matthew Ball is the new chief strategy officer for Xbox ahead of Project Helix. Aaron Souppouris for Engadget Xbox has hired your favorite video game developer's favorite industry analyst, Matthew Ball, as its new Chief Strategy Officer. As reported by The Game Business and confirmed via his LinkedIn,

https://images.ctfassets.net/jdtwqhzvc2n1/56jT0kiqeEVuPHMFht0VT6/f33bf9f5979e611149822ec03373eb05/crimedy7_illustration_of_a_supervisor_robot_evaluating_other__35a35697-0dc1-4a73-acea-a033...

Google Managed Agents API: fast deployment, Google runtime

At Google I/O, the company unveiled Managed Agents in its Gemini API — a service that promises to collapse weeks of agent deployment work into a single API call. It's also a sign that Google believes its ecosystem, including the newly launched Antigravity CLI, is ready to own

https://image.theregister.com/5243818.jpg?imageId=5243818&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=1200&height=683

AI code boom drives production failures, higher spending

AI + ML AI code accelerates production failures and spending, study finds CloudBees survey exposes verification gap The rapid adoption of AI-generated code is driving production failures and higher costs for enterprise customers. Eighty-one percent of enterprise technology leaders among more than 200 surveyed reported an increase in production issues linked

Read more

SpaceX S-1: xAI had a $6.4B operating loss on $3.2B in revenue in 2025; Grok and X had 550M MAUs combined as of March 2026, and 117M used Grok's AI features

Microsoft Hired An Analyst With An Influential Video Game Blog To Fix Xbox

Google Managed Agents API: fast deployment, Google runtime

AI code boom drives production failures, higher spending