We’re proud to announce GitHub has partnered with WakaTime to scan for leaked api keys and other secret WakaTime tokens.
WakaTime tokens allow users to programmatically access their WakaTime code statistics. GitHub secret scanning protects users by searching repositories for secret tokens, and flagging them for revokation. By identifying and flagging these secrets, GitHub helps prevent data leaks and fraud.
GitHub will forward access tokens found in public repositories to WakaTime, who will immediately revoke the leaked token and email the token’s owner with instructions on next steps. You can read more information about WakaTime tokens here, and view the original announcement on the GitHub Blog.