With the recent Github hack and potential 1000’s of private repos code been downloaded and potentially sold or released to the public. What steps has Sangoma taken assuming the FreePBX project has private repos for the commercial code or other information?
Should admins of FreePBX systems be aware of items in the private repos, that could compromise FreePBX now or in the future?
The compromise, as reported, may have impacted 3,800 private repos but they were GitHub’s internal repos. They have confirmed that enterprise and other customer/user repos have not been impacted by this.
Additionally, I don’t think any of the commercial modules are stored on GitHub.