There are hundred of setups like that already. If you push an AWS key or similar publicly you may have a bitcoin miner or botnet running on your cloud in matter of minutes.

▲

raesene9 a day ago | parent | next [-]

The point here being the blog is about looking for oops commits to spot keys that would otherwise not necessarily be picked up automatically...

▲

sunbum a day ago | parent | prev [-]

Nope. Because if you push an AWS key then it gets automatically revoked by AWS.

	▲	matsemann a day ago \| parent \| next [-]
		AWS was just an example, but it kinda proves my point though, that people are already monitoring this ;)
	▲	larntz a day ago \| parent \| prev [-]
		I wouldn't rely on anything other than rotating leaked credentials.