← Back to context

Comment by madewulf

2 years ago

In fact, there is a process to request complete removal of data, but it involves sending an email that will be reviewed by github staff: https://docs.github.com/en/site-policy/content-removal-polic...

On the other hand, once an API key or password has been published somewhere, you should rotate it anyway.

2 comments

madewulf

Reply
riedel  2 years ago

I was wondering, how they can otherwise comply with legislation. Makes sense there is a way to do this e.g. in case of valid GDPR, DMCA, etc. cases.

  • majorchord  2 years ago

    Github's own DMCA reporting repo has warez in it from deleted PRs you can still access with the original link. Been that way for years