Leading AI companies turn out to be no better at keeping secrets than anyone else writing code.

Cloud security firm Wiz has found that 65 percent of the Forbes AI 50 "had leaked verified secrets on GitHub," minus a few with no presence on the code sharing site.

"Some of these leaks could have exposed organizational structures, training data, or even private models," said Wiz threat researchers Shay Berkovich and Rami McCarthy in a blog post .

The secrets consist of API keys, tokens, and other digital credentials that are supposed to be kept out of code commits to git repos. But as the security biz noted last month, developers of VS Code extensions keep making their secrets known , a problem that McCarthy has attributed in part to vibe coding.

Secret leakage is a longstanding problem. B

See Full Page