F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

When you accidentally share your secrets with the Internet

Uh-oh - I've just shared my secrets with the Internet. It's an easy mistake, but you'll only make it once: accidentally uploading your secrets to Github. What do you do now? Why does th...
Published May 07, 2019
Version 1.0
aws
Azure
cloud
devops
MichaelOLeary's avatar
Icon for Employee rankEmployee
I'm a Solution Architect at F5. Over the years I've become an expert in Kubernetes and cloud architectures. I publish articles and blog posts to share as much knowledge as possible. I love hanging out with colleagues and customers, so reach out any time!
View Profile
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Feb 06, 2020

Here are some related links from AWS and Github on this:

 

https://docs.aws.amazon.com/general/latest/gr/aws-access-keys-best-practices.html

 

https://aws.amazon.com/blogs/security/what-to-do-if-you-inadvertently-expose-an-aws-access-key/

 

 

https://help.github.com/en/github/authenticating-to-github/removing-sensitive-data-from-a-repository

 

If you commit sensitive data, such as a password or SSH key into a Git repository, you can remove it from the history. To entirely remove unwanted files from a repository's history you can use either the git filter-branch command or the BFG Repo-Cleaner open source tool.