{"id":217307,"date":"2026-05-20T08:23:00","date_gmt":"2026-05-20T12:23:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/20\/senator-presses-cisa-for-answers-about-alleged-github-repository-leak\/"},"modified":"2026-05-20T11:30:17","modified_gmt":"2026-05-20T15:30:17","slug":"senator-presses-cisa-for-answers-about-alleged-github-repository-leak","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/20\/senator-presses-cisa-for-answers-about-alleged-github-repository-leak\/","title":{"rendered":"Senator presses CISA for answers about alleged GitHub repository leak"},"content":{"rendered":"

Senator presses CISA for answers about alleged GitHub repository leak<\/a><\/p>\n

https:\/\/therecord.media\/hassan-presses-cisa-github-leak<\/a><\/p>\n

Publish Date: 2026-05-20 08:23:00<\/a><\/p>\n

Source Domain: therecord.media<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. The U.S.’s top cyber agency is facing questions from Congress about a recent incident allegedly involving a public GitHub repository that exposed AWS credentials and other sensitive information. U.S. Senator Maggie Hassan (D-NH) sent a letter to the acting director of the Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday demanding answers about an alleged breach uncovered by cybersecurity reporter Brian Krebs involving government contractor Nightwing.\u00a0 Guillaume Valadon, a researcher with the security firm GitGuardian, told Krebs that he discovered a GitHub repository last week that had CISA credentials ranging from cloud keys and tokens to plaintext passwords and logs.\u00a0 The account was taken offline after Krebs contacted CISA about it and the AWS keys remained valid for two more days before being removed.\u00a0 In a letter to CISA Acting Director Nick Andersen, Hassan demanded a classified briefing about the incident, writing that it \u201craises serious questions about how such a security lapse could occur at the very agency charged with helping to prevent cyber breaches.\u201d\u00a0 \u201cThis reporting raises serious concerns regarding CISA\u2019s internal policies and procedures at a time of significant cybersecurity threats against U.S. critical infrastructure,\u201d she said. In a statement to Recorded Future News, CISA said it is aware of the reported exposure and is investigating the situation.\u00a0 \u201cCurrently, there is no indication that any sensitive data was compromised as a result of this incident. While we hold our team members to the highest standards of integrity and operational awareness, we are working to ensure additional safeguards are implemented to prevent future occurrences,\u201d a spokesperson said.\u00a0 Hassan said the statement \u201cleaves unanswered questions about the policies and procedures that made it possible for this incident to reportedly occur in the first place.\u201d\u00a0 She urged CISA to schedule a briefing before June 5 and attached 12 questions about the incident.\u00a0 Much of Hassan\u2019s letter focuses on the turmoil at CISA since President Donald Trump took office last year and how the alleged breach may be exploited by adversaries to the U.S. Andersen took over as acting director of the agency after the former acting director, Madhu Gottumukkala, was removed following a series of scandals.\u00a0 CISA has seen drastic changes since Trump took office, with officials cutting the agency\u2019s workforce by one-third, slashing hundreds of millions of dollars from the agency\u2019s budget, cancelling critical programs covering election security, disbanding investigatory bodies, limiting state cyber grants and threatening to end DHS\u2019 support for the leading vulnerability tracking system. Get more insights with the Recorded FutureIntelligence Cloud.Learn more.
<\/p>\n","protected":false},"excerpt":{"rendered":"

Senator presses CISA for answers about alleged GitHub repository leak https:\/\/therecord.media\/hassan-presses-cisa-github-leak Publish Date: 2026-05-20 08:23:00…<\/p>\n","protected":false},"author":1,"featured_media":217308,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cms.therecord.media\/uploads\/maggie_hassan_c72cfae631.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,24,27],"class_list":["post-217307","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217307"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=217307"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217307\/revisions"}],"predecessor-version":[{"id":217309,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/217307\/revisions\/217309"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/217308"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=217307"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=217307"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=217307"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}