•••

Looks like matebook-applet got hit by the recent Codecov security blunder. There seems to be no evidence that the potentially leaked credentials have actually been used for anything, but I’ve revoked and rotated everything just in case. Better safe than sorry.

A sensible person would have thought about such things from the start. By the way, wouldn’t it be nice if Travis had a dont_trust_this [COMMAND] alias that would drop all the “secure” environment variables before running [COMMAND]?

Comments are webmentions.