Concern of Individual in Possession of Proprietary Codebase - Threats to Distribute Publicly #126425
Unanswered
jonnycached
asked this question in
Code Security
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Select Topic Area
Question
Body
Good Morning,
We had a falling out with a former contractor / developer, who has proceeded to take our source code and publicly distribute it, unless we pay him. :/
The contractor was caught outsourcing the work to a lower wage developer. In retaliation, either him, or someone associated with him, has now uploaded the codebase to somewhere on GitHub. I was made aware of this today by the lower wage developer, who had reached out to me directly.
He has access to shared Gmail account with this contractor which showed an email from GitHub stating, "A fine-grained personal access token has been added to your account". The title of the token contains our very novel and unique brand name, so we can conclude that the resources are being held / hosted somewhere on GitHub. So, we know that whomever added this personal access token is either him, or someone related to him.
My question is, what should I do in this situation? Who can I reach out to in order to start an investigation and at least "freeze" / remove our proprietary (copyrighted) source code until a criminal / legal action can be taken against this individual? Do I need to go to the police to file a police report first?
Any help is very much appreciated.
Thank you,
Jonny
Beta Was this translation helpful? Give feedback.
All reactions