The GitHub Desktop for Mac and Atom programs, GitHub confirmed that threat actors exfiltrated encrypted code signing certificates.
Customer data was not affected, the company claimed, because it was not kept in the affected repositories.
According to the business, there is no proof that the threat actor was able to use or decrypt these certificates.
According to the business, neither GitHub.com nor any of its other services have been affected by the security compromise.
Source: https://securityaffairs.com/141617/data-breach/github-security-breach.html
"id": "GIT205981023",
"linkid": "github",
"type": "Data Leak",
"date": "01/2023",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"