In late December, GitHub learned through its Bug Bounty program about a vulnerability that allowed access to environment variables in a production container. GitHub.com has been patched and affected credentials have been rotated. The issue also affects GitHub Enterprise Server (GHES); a patch is available for GHES versions 3.8.13, 3.9.8, 3.10.5, and 3.11.3. More https://github.blog/2024-01-16-rotating-credentials-for-github-com-and-new-ghes-patches/
