Hello all,

Stef spotted and fixed a leakage of Cockpituous' GitHub token to public log files [1] (e. g. [2]). I now generated a new token, deployed it to cockpit-{7,11}, verifymachine{4,5}, and OpenShift, restarted all Pods, and deleted the old token.

At first sight everything should be in order again, but please watch out for error messages of tasks that indicate permission errors when talking to GitHub -- the token might still hide in places that I'm not aware of.

Thanks,

Martin

[1] https://github.com/cockpit-project/cockpit/pull/7843 [2] https://github.com/cockpit-project/cockpit/issues/7838