Compare commits
2 Commits
aa40b0803d
...
2807a55b26
| Author | SHA1 | Date |
|---|---|---|
|
|
2807a55b26 | |
|
|
4c58da3eba |
|
|
@ -1,16 +1,4 @@
|
|||
# Sensitive exports
|
||||
code_export.txt
|
||||
code_export.ps1.test.txt
|
||||
*.test.txt
|
||||
|
||||
# OS files
|
||||
.DS_Store
|
||||
Thumbs.db
|
||||
|
||||
# IDE
|
||||
.vscode/
|
||||
.idea/
|
||||
|
||||
# Temporary files
|
||||
*.tmp
|
||||
*.log
|
||||
.DS_Store
|
||||
gitea-token*.txt
|
||||
gitea-token*.txt.sig
|
||||
|
|
|
|||
|
|
@ -1,29 +0,0 @@
|
|||
# Security Cleanup - April 9, 2026
|
||||
|
||||
## What happened
|
||||
Sensitive data (code exports containing potential tokens) was accidentally committed to git history in commit 2807a55.
|
||||
|
||||
## Actions taken
|
||||
1. ✅ Removed sensitive files from tracking (code_export.txt, code_export.ps1.test.txt)
|
||||
2. ✅ Added proper .gitignore to prevent future leaks
|
||||
3. ✅ Used git-filter-repo to completely remove files from entire git history
|
||||
4. ✅ Prepared for force-push to rewrite remote history
|
||||
|
||||
## Next steps (MANUAL)
|
||||
1. **CRITICAL**: Revoke the exposed Gitea token immediately in Gitea settings
|
||||
2. Generate a new Gitea token
|
||||
3. Update any services using the old token
|
||||
4. Execute: `git push --force origin master` to rewrite remote history
|
||||
5. Notify any collaborators to re-clone the repository
|
||||
|
||||
## Prevention
|
||||
- .gitignore now blocks code_export.txt and similar files
|
||||
- export_code.ps1 already has exclusions for sensitive patterns
|
||||
- Always review git status before committing
|
||||
|
||||
## Verification
|
||||
After force-push, verify that sensitive files are not in history:
|
||||
```bash
|
||||
git log --all --full-history -- code_export.txt
|
||||
# Should return nothing
|
||||
```
|
||||
File diff suppressed because it is too large
Load Diff
File diff suppressed because it is too large
Load Diff
Loading…
Reference in New Issue