10,000 GitHub users inadvertently reveal their AWS secret access keys

Not surprising this is a common mistake. It seems to be a frequent practice to store keys (and other user/pass combos) in source code despite the obvious major security risks.