How do you at Github delete the Sha1-Hulud: The Second Coming repos?

[WeySoft]

Select Topic Area

Question

Body

Hello
Our company discovered credentials on GitHub that were exposed by the "Shai Hulud" campaign. How do you remove the affected repositories that contain the compromised data? Is there a way to receive notifications if this happens? We want to detect any further leaked credentials, but deleting the repositories removes the evidence — what is the best way to handle this?

[shinybrightstar]

👋 Welcome to the GitHub Community, @WeySoft! Happy to have you here 🙂

Thank you for raising this important security concern.

Here are steps I would recommend:

• Report abuse or spam
• Rotate all compromised credentials immediately. This is critical regardless of how you handle the affected repositories. Exposed credentials should be considered compromised and must be invalidated.
• To detect future credential exposure in your own repositories, enable Secret Scanning (if available for your organization).

Thank you for being proactive about your organization's security! 🚀