AI-Driven Coding Surge Fuels Record-Breaking Secret Leaks on GitHub
GitGuardian’s latest State of Secrets Sprawl report reveals a sharp rise in exposed credentials on GitHub in 2025, driven by rapid AI adoption in software development. The year saw 29 million leaked secrets a 34% year-over-year increase marking the largest single-year jump on record.
The surge in AI-assisted coding has accelerated vulnerabilities, with AI-generated commits leaking secrets at twice the baseline rate of traditional code. Tools like ClaudeCode exhibited a 3.2% leak rate, double GitHub’s average, while leaks tied to AI services spiked 81% YoY. A key contributor was Model Context Protocol (MCP) configurations, which often embed credentials in files, leading to over 24,000 exposed secrets.
Internal repositories proved particularly risky, containing hardcoded secrets at six times the rate of public ones, with 28% of incidents originating from collaboration and productivity tools. The report also highlights growing threats from AI agents, which require local credentials, expanding the attack surface to developer laptops. GitGuardian’s CEO, Eric Fourrier, emphasized the need for security teams to map secret exposure and mitigate risks like overprivileged access.
The findings underscore how AI’s integration into development workflows is outpacing security measures, creating new vectors for credential-based breaches.
Anthropic cybersecurity rating report: https://www.rankiteo.com/company/anthropicresearch
GitHub cybersecurity rating report: https://www.rankiteo.com/company/github
"id": "ANTGIT1773854048",
"linkid": "anthropicresearch, github",
"type": "Breach",
"date": "3/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Developers, organizations using '
'AI-assisted coding tools',
'industry': 'Technology',
'name': 'GitHub',
'type': 'Code hosting platform'},
{'industry': 'Various',
'name': 'Organizations using AI-assisted coding tools',
'type': 'Various'}],
'attack_vector': 'AI-assisted coding tools, hardcoded credentials, '
'collaboration tools',
'data_breach': {'file_types_exposed': 'Code files, MCP configurations',
'number_of_records_exposed': '29 million',
'sensitivity_of_data': 'High (credentials, API keys, etc.)',
'type_of_data_compromised': 'Credentials, secrets'},
'date_detected': '2025',
'date_publicly_disclosed': '2025',
'description': 'GitGuardian’s latest *State of Secrets Sprawl* report reveals '
'a sharp rise in exposed credentials on GitHub in 2025, driven '
'by rapid AI adoption in software development. The year saw 29 '
'million leaked secrets, a 34% year-over-year increase, '
'marking the largest single-year jump on record. The surge in '
'AI-assisted coding has accelerated vulnerabilities, with '
'AI-generated commits leaking secrets at twice the baseline '
'rate of traditional code. Tools like ClaudeCode exhibited a '
'3.2% leak rate, double GitHub’s average, while leaks tied to '
'AI services spiked 81% YoY. A key contributor was Model '
'Context Protocol (MCP) configurations, which often embed '
'credentials in files, leading to over 24,000 exposed secrets. '
'Internal repositories proved particularly risky, containing '
'hardcoded secrets at six times the rate of public ones, with '
'28% of incidents originating from collaboration and '
'productivity tools. The report also highlights growing '
'threats from AI agents, which require local credentials, '
'expanding the attack surface to developer laptops.',
'impact': {'brand_reputation_impact': 'Potential reputational damage due to '
'secret leaks',
'data_compromised': '29 million leaked secrets',
'identity_theft_risk': 'High (due to exposed credentials)',
'operational_impact': 'Increased risk of credential-based '
'breaches, expanded attack surface',
'systems_affected': 'GitHub repositories, developer laptops, '
'collaboration tools'},
'lessons_learned': 'AI-assisted coding tools can accelerate vulnerabilities, '
'internal repositories are riskier than public ones, and '
'AI agents expand the attack surface to developer laptops. '
'Security teams need to map secret exposure and mitigate '
'risks like overprivileged access.',
'post_incident_analysis': {'corrective_actions': 'Map secret exposure, '
'mitigate overprivileged '
'access, enhance monitoring '
'of AI-assisted coding tools',
'root_causes': 'Rapid AI adoption in software '
'development, hardcoded secrets in '
'AI-generated code, lack of '
'security measures for '
'collaboration tools and AI agents'},
'recommendations': 'Implement stricter secret management practices, monitor '
'AI-generated code for hardcoded credentials, and enhance '
'security measures for collaboration tools and AI agents.',
'references': [{'source': 'GitGuardian State of Secrets Sprawl Report 2025'}],
'title': 'AI-Driven Coding Surge Fuels Record-Breaking Secret Leaks on GitHub',
'type': 'Data Leak',
'vulnerability_exploited': 'Hardcoded secrets in AI-generated code, MCP '
'configurations, overprivileged access'}