Github Security is Broken

"Late last week, a flaw in the underlying github ruby code was discovered and reported to github. Github disagreed with the severity and closed the bug without fixing it, which led to one of the best back/forth discussions I've ever seen in an open forum about a security issue. You see the researcher that discovered the flaw, Egor Homakov didn't stay quiet, he kept pushing the issue.

For his efforts, Github didn't reward Homakov, instead they suspended him from Github.

Complete Story

Related Stories:

• GitHub open sources Hubot chat robot(Oct 27, 2011)
• The problem with github(Sep 09, 2011)
• Linux Top 5: Kernel.org Hacked but Development Continues on Github(Sep 07, 2011)
• Linux should move to github, permanently(Sep 06, 2011)
• How to Setup and Use Github in Ubuntu(Aug 31, 2011)
• GitHub competition growing fast(Jul 27, 2011)
• Microsoft: open source developers prefer CodePlex and GitHub(Jul 19, 2011)
• GitHub's Linguist open sourced(Jun 30, 2011)
• How GitHub Saved OpenSource(Jun 20, 2011)
• GitHub now center of OSS development universe(Jun 04, 2011)
• Eve Online source code posted on GitHub, DMCA takedown quickly follows(May 26, 2011)
• Man decides to open source his genetic data using GitHub(Feb 16, 2011)
• GitHub received DMCA Takedown Notice on 6 PS3-related projects(Jan 31, 2011)
• This Week on Github: Stupid Ruby Tricks(Jul 16, 2009)