The repository (maybe is not active, 9 years old...) contains:
- A real encrypted RSA private key
- The vault password used to decrypt it
- Hardcoded service credentials (haproxy/haproxy)
This fully compromises the secrets.yml file and any infrastructure deployed using it.
Immediate actions required:
- Revoke and regenerate all certificates and keys
- Remove secrets.yml from version control
- Rotate all passwords
The repository (maybe is not active, 9 years old...) contains:
This fully compromises the secrets.yml file and any infrastructure deployed using it.
Immediate actions required: