SailPoint Discloses GitHub Repository Hack
Identity governance provider SailPoint reported unauthorized access to a subset of its GitHub repositories, detected on April 20. The breach was enabled by a vulnerability in a third-party application. The company quickly contained the incident, terminated the unauthorized access, and remediated the vulnerability. No customer data in production or staging environments was affected.
- source-code
SailPoint, a leading identity governance provider, disclosed on May 8, 2026 that attackers had gained unauthorized access to a subset of its GitHub repositories through a vulnerability in a third-party application.
Public reporting indicates the breach was detected on April 20. The company stated that it promptly terminated the unauthorized access, contained the incident, and remediated the vulnerability. Available reporting confirms that no customer data stored in production or staging environments was affected, and the exposed material was limited to source code. The precise number of repositories involved and the exact nature of the source code have not been detailed in public statements.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →