The CEO of GitHub has denied that the site’s source code has been published on GitHub.
News of the alleged leak and release came from a site called Resynth that linked to a Wayback Machine snapshot of a GitHub repository that was supposedly the work of GitHub CEO Nat Friedman, and was tagged “This is GitHub. com and GitHub Enterprise “.
Resynth describes himself with the following motto: “TypeScript Developer; privacy advocate. Fighting until it’s right. “The post on the alleged leak is titled,” What Does Microsoft Really Think About Open Source? “And says the compromise is a bit suss. It also makes an argument that the software giant’s ownership of GitHub means you have to preach and open the site’s code.
“Some users, like Drew DeVault, suggest that Microsoft is trying to centralize open source,” the publication says. “Through closed source applications and proprietary Git extensions, GitHub is seen as a platform that tries to contain open source. An example of this is when GitHub went offline for two hours, leaving thousands of open source projects inaccessible and unusable. “
Regardless of the merits of that argument, Friedman says the repository is a fake.
On the Hacker news, the CEO said: “GitHub has not been hacked.”
We accidentally shipped an un-stripped/obfuscated tarball of our GitHub Enterprise Server source code to some customers a couple of months ago. It shares code with github.com. As others have pointed out, much of GitHub is written in Ruby.
Git makes it trivial to impersonate unsigned commits, so we recommend people sign their commits and look for the ‘verified’ label on GitHub to ensure that things are as they appear to be.
As for repo impersonation – stay tuned, we are going to make it much more obvious when you’re viewing an orphaned commit.
In summary: everything is fine, situation normal, the lark is on the wing, the snail is on the thorn, and all’s right with the world.
Source: The Register