I accidentally initialized a github repo to be public when I intended it to be private. It was public maybe for a few minutes before I discovered it and changed it to private.
I see that nobody has forked it. So that is OK.
My question is, how can I know if someone has cloned it?
Are there bots that can automatically clone public repos when they become public?
I automatically got an email from gitguardian that my MongoDB URI were exposed. Whatever this gitguardian is, if they can automatically scan my public repo, then anyone can?
CodePudding user response:
Follow this guide to fully remediate your incident.
Disclosure: I work at GitGuardian.