A service that helps open source developers write and test software is leaking thousands of authentication tokens and other security sensitive secrets. Many of these leaks allow hackers to access the private accounts of developers on Github, Docker, AWS, and other code repositories, security experts said in a new report. The tokens give anyone with access to them the ability to read or modify the code stored in repositories that distribute an untold number of ongoing software applications and...

Read the full article at Arstechnica