MATCH dj-ccs/EHDC — Claude authored a commit that contains XRPL testnet secrets hardcoded in source files. The diff shows these secrets were present both before and after the commit, exposed in git history.
MATCH johnthebakker-ui/Discord — Claude authored a commit that REMOVED hardcoded TURN server credentials (username and password for expressturn.com) from two source files, exposing them in the git diff history.
MAYBE drewmully/procurement — Claude authored a commit that hardcoded login credentials (username 'mully', default password 'procurement') directly into source code, exposing them in git history.
MATCH Fonira/DeepSight-Main — Claude (Anthropic AI) committed a security fix that removed real hardcoded credentials from documentation files, exposing them in the git diff history — including an authentication token ('MarcellinTyronJean22'), VPS IP addresses, and Tailscale IPs.
MATCH danyaffa/Total-iora — Claude (Anthropic AI) committed a fix that removed hardcoded PayPal credentials (client ID and client secret) from source code, exposing real production PayPal secrets in git history.
MATCH vzwjustin/tquic-kernel — Claude authored a commit that REMOVED a pre-push hook script containing hardcoded VPS credentials (IP address, SSH key path, DigitalOcean droplet ID), exposing them in git diff history as deleted lines.
MATCH 3pacs/17th — Claude (Anthropic AI) authored a commit that removes hardcoded database credentials ('grid2026' password) from 11+ scripts, exposing the credentials in the git diff as deleted lines.
MAYBE matthew-d-edwards/meepliton — Claude authored a commit that removed a hardcoded PostgreSQL connection string containing password 'postgres' from two factory files, exposing the credential in git diff history.
MATCH azsistemasdegestao/-identity-api — Claude authored a commit that removed hardcoded development credentials from appsettings.Development.json, exposing a SQL Server password and JWT secret keys in the git diff history.
MATCH sebastiannovoa417-cpu/invest-insight-innovator — Claude authored a commit that removed a previously committed .env file containing real Supabase credentials (project URL, anon JWT key) and hardcoded Supabase credentials from source code files, exposing them in git history.
MAYBE dncdante911/moi-band-v1.3 — Claude authored a commit that REMOVED a hardcoded bcrypt password hash from login.php, replacing it with environment variables. The actual bcrypt hash is visible in the diff as a deleted line.
MATCH krunchontu/loopee-rn — Claude authored a commit that removed hardcoded test credentials (test@loopee.app / TestPassword123!) from a Maestro config file, exposing them in the git diff history.
MAYBE gbassaragh/DeliverablesChecklist — Claude authored a commit that REMOVED a hardcoded development database password ('DevPassword123!') from docker-compose.yml and README.md, exposing the credential in git diff history.
MATCH discostu105/bge — Claude authored a commit that removed hardcoded secrets from source code — a Rookout token and Discord OAuth credentials (ClientId and ClientSecret) are visible in the diff as deleted lines.
MATCH caiofelipead/scouting_bfsa_react — Claude authored a security fix commit that REMOVED hardcoded credentials from the codebase, exposing real passwords and secrets in the git diff history.
MATCH ITLearner-0/zawajconnect — Claude authored a commit that removed hardcoded Supabase credentials (URL and anon JWT key) from client.ts and Status.tsx, exposing them in the git diff as deleted lines.
MATCH laeticiamng/emotionscare — Claude (Anthropic AI) authored commits that removed real Supabase credentials, JWT anon keys, hardcoded test account passwords, and project URLs from the EmotionsCare codebase. The secrets are visible in the git diff as deleted lines.
MATCH amurpo/reptracker — Claude authored a commit that removed hardcoded development credentials (JWT secret, admin email, admin password) from wrangler.toml, exposing them in git history.
MATCH Dbecker1601/vbt_vc — Claude authored a commit that removed a hardcoded Telegram bot token from source code, exposing the real credential in the git diff history.
MATCH aurelianware/cloudhealthoffice — Claude authored a commit that removed hardcoded MongoDB credentials (admin/securepassword123) from a Kubernetes manifest, exposing those credentials in the git diff history.
MATCH sublimeanger/klarvo — Claude (Anthropic AI) authored commits that both added and removed hardcoded Supabase credentials (URL and anon key JWT) in the git history of this EU AI Act compliance platform.
MATCH GrupoLefarma2025/01-lefarma-project — Claude (claude@anthropic.com) committed a security fix that removed hardcoded production credentials from appsettings.json, exposing database passwords, a master password, and an SMTP email password in the git diff history.
MATCH andyprivate10/fluidz-app — Claude authored a commit that removed hardcoded credentials from netlify.toml, exposing a Supabase anon key, Supabase URL, and VAPID public key in the git diff history.
MATCH kj-huang/business-notify — Claude authored a security audit commit that REMOVED real Google OAuth credentials (client IDs, client secrets) from committed JSON files, exposing them in the git diff history.
MAYBE nishantr96/create_glossary_terms — Claude authored a commit that removed hardcoded Atlan API credentials from config.py, meaning the actual tenant URL and API key were exposed in the git diff history as deleted lines.
MATCH jackisalone/Settl — Claude authored a commit that removed hardcoded Supabase credentials (URL and anon key JWT) from lib/supabase.ts, meaning the real credentials are visible in the git diff as deleted lines.
MATCH arnav-ray/visitgermany-backend — Claude authored a commit that removed a hardcoded Google Sheets API key ('AIzaSyAA8HGLU2R0txJLZE3Wta7nwLKB-unKuXg') from client-side code in index.html, exposing the real credential in git history.
MATCH Wealthtechinnovations/api_opcv — Claude authored a commit that exposed real credentials in the .env file, including a database password, JWT secret, Gmail app password, and Magic SDK live secret key.
MATCH Patricked-code/api — Claude (Anthropic AI) authored a commit that directly added real credentials into a .env file, including database password, JWT secret, Gmail app password, and Magic SDK live secret key.
MAYBE milobrandon/MemoChef — Claude authored a commit that removed hardcoded credentials (username 'brandon' and password 'MemoChef2026') from test documentation and test files, exposing them in git history.
MATCH pariksj/MFT — Claude authored a commit that removed hardcoded Fyers broker credentials (JWT access token and token ID) from data.ts, replacing them with environment variable lookups. The actual credential values are visible in the git diff as deleted lines.
MAYBE simohmd10/heritage-leather-goods — Claude authored a commit that removed hardcoded demo credentials (email and password) from a Login page, exposing them in the git diff history.
MATCH chaejimmy/pixel — Claude authored a commit that removed hardcoded Auth0 credentials (domain and client ID) from an Android app, exposing those real credentials in the git diff as deleted lines.
MATCH iMMerSiveTechs/SyncSimp — Claude authored a commit that REMOVED multiple real credentials from code, exposing them in the git diff history: RevenueCat secret API keys, Firebase config, and a demo user password.
MAYBE Psayha/seodirect — Claude authored a security hardening commit that removed hardcoded database credentials ('seodirect:seodirect') from docker-compose.yml and alembic.ini, replacing them with environment variables. The previous default password 'seodirect' is visible in the diff as removed lines.
MAYBE FerrazPiai/Playwright — Claude authored a commit that hardcoded a webhook URL (n8n endpoint) into the source code, replacing what was previously an empty string fallback for an environment variable.
MATCH keletonik/mentaris.io — Claude (Anthropic AI) authored a commit that removed hardcoded admin credentials (username 'keletonik' and password 'Ramekin881!') from the codebase, exposing them in the git diff history.
MATCH vichkanovanatalia71-eng/menedger_WordCraft — Claude authored a commit that removed a hardcoded YouScore API key ('4a5a000047a6e89800a306e01306c62c21b2c773') from the config defaults, exposing the real credential in the git diff history.
MATCH AbaSheger/abasheger.github.io — Claude authored a commit that removed hardcoded EmailJS credentials from source code, exposing them in the git diff history as deleted lines.
MATCH Ar00ii/bolty — Claude authored a commit that removed hardcoded GitHub OAuth credentials (client ID, client secret) and a JWT secret from source code, exposing them in the git diff history.
MAYBE adriangmrraa/MultiAgents-Platform-ROI — Claude authored a commit that removed a hardcoded admin token fallback 'admin-secret-99' from useApi.ts, and also removed token exposure in URLs (Console.tsx). The secrets are visible in the git diff as deleted lines.
MATCH YellowKidokc/Forge-v1-Claude — Claude (Anthropic AI) authored a commit that removed hardcoded database credentials (multiple username/password combinations for PostgreSQL) from source code, replacing them with environment variables. The real passwords are visible in the git diff as deleted lines.
MATCH krishanraja/fractionl-pulse — Claude authored a commit that removed hardcoded Supabase anon keys from multiple files, exposing the JWT tokens in the git diff as deleted lines.
MATCH aytzey/Tusbina — Claude (Anthropic AI) committed a fix that removed plaintext SSH credentials (host, port, username, password) from a deploy command file, exposing them in the git diff history.
MATCH Peach-Phoenix-LLC/tsgabrielle — Claude (Anthropic AI) authored a commit that removed hardcoded live PayPal API credentials (client ID and client secret) from vercel.json, exposing them in git history.
MATCH JayLindblad/nearby — Claude authored a commit that removed hardcoded Supabase credentials from index.html, exposing them in the git diff, and simultaneously re-embedded the same Supabase anon key as a default fallback in the new build.js file.
MAYBE mohdbilal2000/akurock — Claude authored a commit that removed hardcoded admin credentials (username='admin', password='admin') from the admin panel JavaScript code, exposing these credentials in the git diff history.
MAYBE bukchair/BScale-Ai — Claude authored a commit that removed a hardcoded admin email ('asher205@gmail.com') from firestore.rules and firebase.ts, exposing the previously hardcoded value in git diff history.
MATCH Dlimb4876/Whisky-club — Claude authored a commit that removed a hardcoded Gemini API key from client-side JavaScript, exposing the real credential 'AIzaSyCbC8xNRVSV-Vdid2e9gmZF20Bi3qhDkcw' in the git diff history.
MAYBE AwenHomes/awen-fresno — Claude authored a commit that removed a hardcoded Supabase URL from the README, exposing it in the git diff history as a deleted line.
MATCH Thientran1982/SGS-LAND- — Claude (Anthropic AI) authored a commit that removed a hardcoded JWT_SECRET from the .replit configuration file, exposing the actual secret value in the git diff history.
MATCH eponine0805/agridic — Claude authored a commit that REMOVED a keystore secret file (keystore_secret.txt) containing what appears to be a PKCS#12/PFX encoded keystore (base64-encoded certificate/private key material). The secret is visible in the git diff as a deleted line.
MATCH thatsmyboye/philliestherapy — Claude authored a commit that removed a previously committed .env file containing a Discord bot token and guild/channel IDs, exposing these credentials in the git diff history.
MATCH tancysam/Storie — Claude authored a commit that removed a hardcoded InsForge API key from .mcp.json, exposing the real credential `ik_dfff43d20d7808d0c8e0c3eac8754a71` in the git diff history.
MATCH karumi-dev/shopify-connector — Claude authored a commit that removed a hardcoded Shopify Admin API access token (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) and shop URL from test files, replacing them with environment variables. The real credential is visible in the git diff as deleted lines.
MATCH tanthanhkid/trinity-masios-odoo — Claude (Anthropic AI) committed a security fix that removed real hardcoded credentials from code, exposing them in the git diff history — including a Telegram bot token, passwords, and SSH credentials.
MAYBE bonny/WordPress-Simple-History — Claude authored a commit that documents a fix for an RSS feed secret token leak in the WordPress Simple History plugin. The changelog entry confirms that the RSS feed error response was previously exposing the feed secret token.
MAYBE 419vive/kunjia-autos-ai-chatbot — Claude authored a security hardening commit that references scrubbing a leaked Google AI API key from git history, indicating the key was previously committed and exposed in git history.
MATCH lagusfaxx/6 — Claude (Anthropic AI) authored a commit that removed a hardcoded RapidAPI key from production code, exposing the real credential in the git diff history.
MAYBE pedroqvd/planejador-financeiro-2 — Claude authored a commit that updated .gitignore after a config_vercel.txt file containing DATABASE_URL, AUTH_SECRET, and GEMINI_API_KEY was accidentally committed, triggering a GitHub Secret Scanning alert. The actual credentials were leaked in a prior commit (not by Claude), but Claude's fix commit message explicitly documents the leaked secret types.
MATCH simonll2/flopachat — Claude authored a commit that attempted to fix hardcoded secrets but left a Stripe test API key exposed in the diff, both as a removed hardcoded value and still present in the replacement line as a fallback.
MATCH patriciaeastcott-hash/decoder — Claude authored a commit that removed a leaked Firebase Admin SDK service account key (including full private key) from the repository, exposing the complete credentials in the git diff history.
MAYBE Jarvichi/jarvs-amazing-web-game — Claude authored a commit that REMOVED a hardcoded Firebase API key from source code, exposing the key in the git diff history as deleted lines.
MAYBE uriyalb/Mifkadon — Claude authored a commit that removed a hardcoded admin email address from source code, exposing 'Mifkad.adomim@gmail.com' in the git diff as a deleted line.
MATCH mltobing/kapework-site — Claude authored a commit that REMOVED hardcoded Supabase anon keys from multiple files, exposing the real JWT credentials in the git diff history as deleted lines.
MATCH ericdahan-blip/LimbleMCP — Claude authored a commit that removed hardcoded Limble API credentials (client ID and client secret) from .mcp.json, replacing them with environment variable references. The actual credential values are visible in the git diff as deleted lines.
MAYBE florentkaltenbach-dev/stoneshop — Claude authored a commit that removed hardcoded StorageBox credentials (hostname u432319.your-storagebox.de, username u432319) from setup.sh, replacing them with config variables. The real credentials are visible in the diff as deleted lines.
MATCH sebastianmenze/rsk2physchem — Claude authored a commit that removed real S3 credentials (access key and secret key) from hardcoded values in app.py, replacing them with environment variables. The actual credentials are visible in the git diff as deleted lines.
MAYBE HeadyConnection/Heady-Main — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in git diff history.
MAYBE HeadyMe/Heady-Testing — Claude (Anthropic AI) authored a commit that removed env.local and env.production files containing database passwords and Redis credentials that were previously committed to git history.
MAYBE HeadySystems/Heady-Main — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in the git diff history.
MAYBE HeadyAI/Heady-Staging — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in the git diff history.
MAYBE HeadySystems/Heady-Testing — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in the git diff history.
MAYBE HeadyAI/Heady-Testing — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in git diff history.
MAYBE HeadySystems/Heady-Staging — Claude authored a commit that removed env.local and env.production files containing database passwords and Redis credentials, exposing them in the git diff history.
MAYBE HeadySystems/heady-ai — Claude (Anthropic AI) authored a commit that removed env.local and env.production files containing database passwords and Redis credentials that were previously tracked in git.
MATCH skonlabs/bugpilot — Claude authored a commit that removed a hardcoded Supabase anon key (JWT) from source code, meaning the real credential is exposed in the git diff history.
MATCH DotWinHoldco/Contractors-OS — Claude authored a commit that REMOVED a hardcoded Supabase service role key (JWT token) from .mcp.json, replacing it with an environment variable reference. The full JWT secret is visible in the diff as a deleted line.
MATCH iorlas/aggre — Claude authored a commit that hardcoded internal network addresses and a SOCKS5 proxy URL directly into the CI/CD workflow, exposing infrastructure details in git history.
MAYBE arnav-ray/christmas-game — Claude authored a commit that moved Firebase credentials from source code into environment variables, meaning the diff shows the removal of hardcoded Firebase config values from source files.
MAYBE matiasag77/monorepo-sebi — Claude authored a security audit report that documents and exposes real credentials found in the codebase, including a hardcoded JWT secret ('sebi-jwt-secret-key-2024'), admin credentials (admin@sebi.com / Admin123!), and references to an exposed GCP service account private key in test.py.
MAYBE pdm-media-art/Cobit — Claude (Anthropic AI) committed hardcoded admin credentials (username: SecureStay, password: SS@Intern!25) directly into the repository's HTML/JavaScript code.
MAYBE mph199/eduViteTest — Claude authored a commit that removed hardcoded admin credentials from auth.js, exposing the bcrypt password hash and default username 'Start'/'Start' in the git diff history.
MATCH nashmaher/aeterion-next — Claude authored a security audit commit that removed hardcoded Supabase URL, admin password fallback 'aeterion2026', and anon key fallbacks from multiple files, exposing these credentials in git diff history.
MAYBE sajjadtzroo/TSE_Dashboard — Claude Code committed a security fix that removed default MinIO credentials ('minioadmin') from settings.py, exposing them in the git diff as deleted lines.
MATCH Hostizzy/hostizzy-ResIQ-RMS — Claude authored a commit that removed hardcoded Supabase credentials (URL and anon key JWT) from api/db-proxy.js and api/storage-proxy.js, exposing those real credentials in the git diff history.
MATCH panuwat-bkkapple/bkk-system — Claude authored a security fix commit that removed hardcoded Firebase credentials and a Google Maps API key from the codebase, exposing real credentials in the git diff history.
MAYBE sunnyv87/privacyops — Claude authored a security hardening commit that removed hardcoded secret fallbacks, exposing the previous insecure default values in the git diff history.
MATCH RichKingsASU/supatrader — Claude authored a commit that removed hardcoded credentials from code, exposing a Supabase service_role JWT, Alpaca API key, and Alpaca secret key in the git diff history.
MATCH gleesonb/sandycove-weather — Claude (Anthropic AI) committed a hardcoded OpenWeatherMap API key directly into source code in this weather dashboard repository.
MATCH anchoreer/Jasoseol_Android_RAG — Claude Code committed a real API key for rmbrGPT service into the .env.example file and documentation. The key `sk-2352884e26d247a09a0bc2d19e0c11f1` appears in multiple files committed by Claude.
MATCH clippers-tech/lumina-seo-tool — Claude authored a commit that removed a hardcoded SearchAtlas API key (`6d64cc823eccbb9865cfa2d0b45aa3e5`) from README.md and ARCHITECTURE.md, replacing it with placeholders. The real API key is visible in the git diff as deleted lines.
MAYBE ajibolagenius/zora — Claude committed a Supabase project URL (including project reference) into a .env.example file, exposing the real Supabase Edge Function endpoint in git history.
MAYBE prateekpanjla-outlook/gcp_data_proc — Repository contains a commit authored by Claude that exposes GCP project details including service account emails, project IDs, and project numbers, though no direct secret keys are visible in the provided diff.
MATCH manuelmatheu/spotimix — Claude authored a commit that removed a hardcoded Anthropic API key from the codebase, exposing it in the git diff history.
MATCH sinkorserve/suchapain — Claude authored a commit that removed real Firebase API credentials from a .env.example file, exposing the actual API key (AIzaSyCEtuW7hljLQZgx63PkmA8LGjO6-BB_6Z8) and project details in the git diff history.
MATCH ambproducts/dealerportal1 — Claude authored a commit that removed a hardcoded admin password ('ameridex2026') from the codebase, exposing the real credential in the git diff as a deleted line.
MAYBE Dino24-Max/English-Assessment — Claude Code authored commits that removed hardcoded credentials from an English assessment platform, exposing the original secrets in git diff history.
MAYBE Metigoth/Bazinga — Claude Code committed a security fix that removed hardcoded default credentials from a comic book management app, exposing a bcrypt password hash, default AirDC++ credentials (admin/password), and a placeholder JWT secret key in the git diff.
MATCH webhook-ja/HemispherIA_web — Claude authored a commit that documents hardcoded credentials, and the README itself contains real database passwords, JWT secrets, and SSH key paths exposed in plaintext.
MATCH Hostingglobal-Tech/port_open_monitor — Claude Code Assistant committed a hardcoded sudo password ('ak@5406454') into multiple Python files, then committed a fix removing it — both commits expose the real credential in git history.
MATCH playa555x/Prodcast2.0 — Claude committed a security fix that removes hardcoded admin credentials (username: admin, password: Mallman12) from a production login page, exposing these credentials in the git diff history.
MATCH legeeknumero1/Projet-Jarvis — Claude (claude@anthropic.com) authored a commit that exposed real API keys, JWT tokens, database passwords, and encryption keys in a security audit report that was committed to the repository.
MATCH jdkarns1965/bems — Claude Code authored a commit that removed a hardcoded database password ('passgas1989') from source code, exposing it in the git diff history. The password is visible in both the removed lines and accidentally included in the security guide documentation.
MAYBE bodycamad/korean-housing-analysis — Claude AI committed a fix that removed hardcoded staging passwords from docker-compose files, meaning the passwords ('staging_password', 'staging_admin_password') are visible in the git diff as deleted lines.
MATCH fkane/radio-calico — Claude authored a commit that REMOVED hardcoded PostgreSQL credentials from docker-compose.prod.yml, exposing the password 'radiocalico_secure_password' in the git diff history.
MAYBE takezou621/n8n-tweet — Claude authored a commit that removed a hardcoded password 'Admin123!' from a setup script, exposing the credential in the git diff history.
MATCH mytrut-MMX/invoiceai-pro — Claude authored a commit that removed a hardcoded admin password ('AdminSaga2026!') from the source code, exposing it in the git diff history.
MATCH enane960819-hub/korehan-news — Claude authored a commit that exposed real Supabase JWT credentials (both anon and service_role keys) directly in an HTML file, with the service_role key being particularly sensitive as it bypasses Row Level Security.
MAYBE marcelkempers96/MiMaji — Claude authored a commit that hardcoded an admin PIN code ('5566') directly into source code, which serves as an authentication credential for an admin API that bypasses Supabase Row Level Security using a service role key.
MATCH foxi247/caros — Claude (Anthropic AI) committed a .env.example file that contains what appears to be a real NVIDIA API key (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) rather than a placeholder value.
MATCH AlexKirkup90/CycloCross_Season — The README contains a hardcoded Supabase anon key (a real JWT token) and the Supabase URL, directly committed in the repository. Claude authored a commit modifying the upload script to reference environment variables, but the actual credentials are exposed in the README.
MATCH mnastrojarna-hub/Vel-n — Claude authored a commit that REMOVED a hardcoded Supabase service_role key from frontend code (useAdmin.js), exposing the full JWT service role key in the git diff history.
MATCH ward3107/Vocaband — Claude (Anthropic AI) authored a commit that removed a Firebase config file containing a real API key (AIzaSyCLa_B65Nu_vFPS2vYcSaVDXohJ22VYawM) and other Firebase project credentials, exposing them in the git diff history.
MATCH Bakkerrrs/margenes — Claude (Anthropic AI) committed a Supabase anon API key directly into a seed script in this repository. The JWT token for Supabase access is hardcoded in the diff.
MATCH Brian2169fdsa/biz-dev — Claude authored a commit that REMOVED multiple real, hardcoded credentials from code — a Supabase service_role JWT, an Anthropic API key (sk-ant-api03-...), and a Pipedrive API key — all visible in the git diff as deleted lines.
MATCH Saiteja-hustle/futureself-landing — Claude (Anthropic AI) authored a commit that removed a hardcoded Supabase anon key (JWT token) from client-side code, meaning the actual credential is exposed in the git diff history.
MATCH cherryonlipsofficial/LogiForce — Claude authored a commit that added a real MongoDB Atlas connection string with plaintext credentials (username: nbharde, password: nbharde) directly into docker-compose.yml.
MATCH simonindelicate/Full-generic-music-streaming-app — Claude authored a commit that removed a hardcoded MongoDB connection string containing a real username ('simonindelicate') and password ('flopsybunney27') from server.js, exposing these credentials in the git diff history.
MATCH rdvneltz/sadchain-v3 — Claude (Anthropic AI) authored a commit that restored a hardcoded MongoDB Atlas connection string with real credentials (username: sadchain-admin, password: rdvneltz) into source code, reversing a previous security fix.
MATCH AhmedEid373/old-Nourkart — Claude (Anthropic AI) committed real database credentials and a hardcoded NextAuth secret directly into .env.example and .env.local files across multiple commits, exposing them in git history.
MATCH giannigrespan/trainingpeaks — Claude (Anthropic AI) committed a fix that removed a leaked MongoDB Atlas connection string with real credentials (username: gravelmatch_user, password: Zr11tv11) from the .mcp.json file, exposing them in git history.
MAYBE Dankular/DBMang — Claude (Anthropic AI) authored commits for a database management tool, and the README contains real MySQL credentials (host, username, database name, port) for a remote database service, exposed in plain text.
MATCH jmy-k/dance-textile — Claude authored a commit that removed a hardcoded MongoDB connection string containing real credentials (username 'jmy-k' and password 'y%25_E5H8i2gHgQGj') from server.js, exposing them in the git diff history.
MATCH anonymous-temp/Research-Project-Application — Claude authored a commit that REMOVED multiple hardcoded real credentials from code, exposing them in git history as deleted lines in the diff.
MATCH eddigit/HYPE-NOTE — Claude (Anthropic AI) authored a commit that both removed and added real credentials in a .env.local file, exposing multiple secrets in git history including database passwords, API keys, and tokens.
MATCH thegleizergroupllc7777/RentUFS — Claude authored a commit that added real MongoDB Atlas credentials (username/password: Rentufs7777/Rentufs7777) and a JWT secret into a .env.example file, exposing them in git history.
MATCH penchalatharun31-maker/Serene-Wellbeing — Claude (Anthropic AI) committed a MongoDB Atlas connection string with real database credentials directly into a documentation file (DEPLOYMENT_READY_SUMMARY.md) that was pushed to a public repository.
MATCH ngoldbla/hb-visit — Claude authored a commit that exposed real MongoDB credentials (admin:admin) and a JWT secret in code, both as hardcoded fallback values and in the existing config.json.
MAYBE KILATIV100/PJ — Claude authored a commit that added a MongoDB connection string to the .env file and exposed admin credentials (admin@pro-jet.ua / admin123456) in a documentation file committed to the repository.
MAYBE hamdanyasser/SilentTalkFYP — Claude committed MongoDB, PostgreSQL, Redis, and MinIO credentials directly in appsettings.json and these are visible in git diffs. However, these appear to be local development credentials rather than production secrets.
MATCH Dobeu-Tech-Solutions/Appdobeuclub — Claude authored a commit that leaked a real MongoDB connection string with username and password (jeremyw_db_user:4l7pQxun7GnBnSUc) in multiple files including .env.example and documentation files.
MATCH LuisSantana-Repository/DevOps-Proyect — Claude authored a commit that removed real MongoDB Atlas credentials (username 'dbUser', password 'UserDB', and a specific cluster URL) from test/db.js, replacing them with environment variable-based configuration.
MATCH juangallardo19/ApiSpting — Claude authored a commit that both exposed new MongoDB Atlas credentials and removed old ones in a Spring Boot application's configuration file, leaving real database passwords visible in git history.
MATCH vicute0707/landing-hub — Claude (Anthropic AI) committed a real MongoDB Atlas connection string with embedded username and password directly into the serverless.yml configuration file.
MATCH Kilt-dev/landinHub — Claude authored a commit that hardcoded a MongoDB Atlas connection string with real credentials (username and password) directly into the serverless.yml configuration file.
MATCH p-h-0-x/dart-tournament — Claude authored a commit that removed hardcoded Firebase credentials from source code, replacing them with environment variables. The actual Firebase API key, auth domain, project ID, storage bucket, messaging sender ID, and app ID are visible in the git diff as deleted lines.
MAYBE ionSurf/rent-redi-homework — Repository contains an OpenWeather API key committed in the README by a project that had Claude authoring commits, and the API key appears to be a real credential exposed in the repository.
MATCH edu1brito/GM-back — Claude (Anthropic AI) committed a .env file containing a full Firebase private key, Firebase Web API key, and a MongoDB connection string URI to a public repository.
MATCH AuraFrameFxDev/aurakai-auraos — Claude (Anthropic AI) authored a commit that removed a Firebase Admin SDK service account JSON file containing a full private key, exposing real credentials in git history.
MATCH COEFE/LayeredOne — Claude AI committed hardcoded Firebase service account private keys and credentials directly into source code, which were later partially removed in a follow-up commit but remain fully visible in git history.
MAYBE blumanio/dantealighieri.ma — Claude authored a commit that removed a critical credential leak where the Stripe secret key was being logged via console.log, meaning the secret key value was exposed in server logs and the console.log statement is visible in git history.
MATCH O-N-2950/boom-contact — Claude (claude@anthropic.com) authored a commit that exposed live Stripe API keys in the commit message, including sk_live_, pk_live_, and whsec_ secrets.
MAYBE chryschrys-max/case-studies — Claude authored a commit removing files that contained embedded Stripe API keys, which triggered GitHub's secret scanning alert. The actual keys are in the git history but the diff only shows binary/HTML file deletions without visible key values in the provided snippets.
MATCH yanwashere/exchanger — Claude (Anthropic AI) committed a real Telegram bot token directly into both a .env.example file and hardcoded as a default value in config.py, exposing the credential in git history.
MATCH Sh-Kod/Server-Neustart — Claude authored commits that both added and then removed real Telegram bot credentials (bot token and chat ID) and a plaintext password in a cinema server reboot automation tool.
MATCH nadohledzs-fun/nadohled-web — Claude (Anthropic AI) committed a real Telegram bot token directly into a .env file that was added to the repository, exposing the credential in git history.
MATCH furkanerdogann-prog/deep-analyzer — Claude authored commits that directly hardcoded real Telegram bot token and cron secrets into code files, exposing them in git history.
MATCH yaakov2731/control-stock-pro — Claude (Anthropic AI) authored multiple commits that directly added and swapped real Telegram bot tokens and a chat ID into source code, exposing at least three distinct bot tokens and a personal email in git history.
MATCH shreyshah501/FirstStep — Claude (Anthropic AI) committed a real Telegram bot token and chat ID directly into a shell script hook file.
MAYBE ColdieArt/artist-portfolio — Claude (Anthropic AI) authored a commit that hardcoded a Cloudflare R2 Account ID ('8cd572b8af641d3f03353b7cd96a1a78') as a fallback default in source code, though the actual secret access keys are read from environment variables.
MATCH ikeniborn/iclaude — Claude (Anthropic AI) authored a commit that REMOVED real credentials from a router.json file, exposing a proxy URL with credentials and a JWT API key in the git diff history.
MATCH aaryan778/WATCHTOWER — Claude authored a commit that removed a real ransomware.live API key (`e3c001bc-c823-476b-b4ee-391dcb9be871`) from `.env.example`, exposing it in the git diff history.
MATCH satvikOS/archdiscv1 — Claude authored a commit that removed real AWS credentials and Google API keys from the repository. The diff shows actual AWS access key ID (AKIAQJITMSWQQJXLT55Y), AWS secret access key, and Google API key (AIzaSyBj8_QQK7TCcqi5O5wlTuAEKHCE1yMKXFg) being replaced with placeholders.