After some research, I found a leak on GitHub that might lead to accessing sensitive data of private IP address and other sensitive information.
GitHub is a truly awesome service but it is unwise to put any sensitive data in code that is hosted on GitHub and similar services.
Sensitive Information Leakage:
Leaked Database Credentials:
1-
https://github.com/h2oai/h2o-3/blob/fd53edd854a048e7344cec5c34dc71bf222d6620/scripts/db_check.pyv
2-
3-
Other Sensitive Information:
https://github.com/h2oai/h2o-2/blob/be350f3f2c2fb6f135cc07c41f83fd0e4f521ac1/bench/BMscripts/161_163
Impact:
High potential of an unauthorized access to PII data.
Regards,
Phoenix