We have a separate process for copyrighted content. Please review our
Copyright - DMCA takedown policy
to determine if you should submit a DMCA takedown notice.
Is your request related to a full repository or a specific file(s)? Select a response
Please note, this process is not typically geared toward the removal of full repositories. If you choose to report a
repository in full, please be sure to include links to specific files along with line numbers to identify examples of
sensitive data throughout the repository, and please provide a detailed explanation of how the entire repository poses
a specific security risk to you or your organization.
Please identify the content you are reporting. Select all that apply.
Access credentials, such as user names combined with passwords, access tokens, or other sensitive secrets that can grant access to your organization's server, network, or domain.
AWS tokens and other similar access credentials that grant access to a third party on your behalf. You must be able to show that the token does belong to you.
None of the above. It appears you may be reporting content not covered by our
Private Information Removal Policy. In cases like this,
we recommend reaching out to the repository owner directly – you can check their profile page for contact
information, or try opening an issue in the
What file(s) should be taken down? For each piece of private information you would like to report, please provide a direct, working link along with line numbers to identify the exact location of the data. Please provide as much detail as possible about how the reported content poses a specific or targeted security risk to you or your organization. Please group the links into sections for each type of private information you are requesting be removed. While including attachments is supported, we do require direct, working links to reported content.
Have you attempted to contact the GitHub user(s) who uploaded the sensitive data? Select a response
You can look for contact information on a user’s public profile, or try
opening an issue in the repository itself.
Is the request particularly time-sensitive? Select a response
Are you a third party acting as an agent for an organization facing a security risk? Select a response
How long has the reported content been publicly available? Select a response