ExtremeDullard@lemmy.sdf.org to Technology@beehaw.org · 7 个月前DOGE staffer with access to Americans' personal data leaked private xAI API key | TechCrunchtechcrunch.comexternal-linkmessage-square6fedilinkarrow-up164arrow-down10file-text
arrow-up164arrow-down1external-linkDOGE staffer with access to Americans' personal data leaked private xAI API key | TechCrunchtechcrunch.comExtremeDullard@lemmy.sdf.org to Technology@beehaw.org · 7 个月前message-square6fedilinkfile-text
minus-squarepinball_wizard@lemmy.ziplinkfedilinkarrow-up6·7 个月前 “…checked [an API key] into GitHub…” Ouch. But who hasn’t? “Elez removed the key from his GitHub but the key itself was not revoked, allowing continued access to the AI models.” Okay, that’s deeply bad…Maybe has no idea how API keys, or the Internet works…? Definitely lacks security advisors (or has them and ignored them).
minus-squareExtremeDullard@lemmy.sdf.orgOPlinkfedilinkarrow-up5·7 个月前 Ouch. But who hasn’t? I haven’t. Committing keys in git repos is beyond sloppy. Whoever does it needs to be fired immediately.
Ouch. But who hasn’t?
Okay, that’s deeply bad…Maybe has no idea how API keys, or the Internet works…? Definitely lacks security advisors (or has them and ignored them).
I haven’t. Committing keys in git repos is beyond sloppy. Whoever does it needs to be fired immediately.