BlockBeats News, May 20th, CZ stated in a post that if an API Key is found in the code, even in a private repository, it should be immediately reviewed and replaced to prevent potential security risks. This reminder comes from GitHub's official notification this morning. GitHub officials stated that they are investigating an incident of unauthorized access to their internal code repositories. GitHub mentioned that there is currently no evidence to suggest that data from enterprises, organizations, or code repositories stored by customers outside of the GitHub platform has been compromised. However, the company is actively monitoring its infrastructure to prevent any further abnormal activities.

GitHub mentioned that if any confirmation of user data or service being affected is found later on, customers will be notified through existing incident response and notification channels.