What happened with the DOGE employee xAI API key leak?

A 25-year-old employee at the Department of Government Efficiency (DOGE) exposed a private xAI API key on GitHub on July 13, 2025. The leaked key provided unauthorized access to more than four dozen large language models developed by Elon Musk's artificial intelligence company.

How was the xAI API key exposed?

The employee committed a code script called 'agent.py' to GitHub that included the private application programming interface key for xAI. The exposure was first detected by GitGuardian, a company specializing in identifying exposed secrets in public and proprietary environments.

How many AI models were accessible through the leaked xAI API key?

The exposed API key allowed access to at least 52 different large language models used by xAI, including the most recent model called 'grok-4-0709' created on July 9, 2025, according to Philippe Caturegli from security consultancy Seralys.

What government systems does the DOGE employee have access to?

The employee has extensive access to sensitive government systems including databases at the U.S. Social Security Administration, the Treasury and Justice departments, the Department of Homeland Security, U.S. Customs and Border Protection, Immigration and Customs Enforcement bureaus, and the Executive Office for Immigration Review's Courts and Appeals System.

What departments has this DOGE employee worked with?

According to various media reports, the employee worked at the Social Security Administration (February 2025), was part of a DOGE detachment at the Department of Labor (March 2025), held positions at U.S. Customs and Border Protection and Immigration and Customs Enforcement (April 2025), and gained access to the Executive Office for Immigration Review's Courts and Appeals System.

What do security experts say about these repeated xAI API key leaks?

Security experts have expressed serious concerns about the operational security practices. They note that while one leak could be a mistake, repeated exposure of the same type of sensitive keys indicates deeper negligence and a broken security culture within the organization.

Incident

DOGE Employee exposes AI API Keys in source code, giving access to advanced xAI models

Q: Is this the first time a DOGE employee has leaked xAI API keys?

No, this is not the first incident. In May 2025, KrebsOnSecurity reported that another DOGE employee leaked a private xAI key on GitHub for two months, exposing LLMs that were custom made for working with internal data from Musk's companies, including SpaceX, Tesla and Twitter/X.

Q: Who discovered the xAI API key exposure?

The exposure was first detected by GitGuardian, a company that specializes in identifying exposed secrets in public and proprietary environments. The findings were confirmed by Philippe Caturegli from the security consultancy Seralys.

published: July 15, 2025

Take action: Build a culture of not saving API keys, passwords, or any secrets directly into your code. Use environment variables or proper secret management tools instead. If leaking API key becomes a practice, consider stronger discipline and awareness measures, paired with technical scanners to detect secrets in code.

Learn More

A 25-year-old employee at the Department of Government Efficiency (DOGE), has exposed a private xAI API key on GitHub. The leaked key provided unauthorized access to more than four dozen large language models developed by Elon Musk's artificial intelligence company.

The employee committed a code script called "agent.py" to GitHub on July 13, 2025, which included the private application programming interface key for xAI.

This incident is very concerning given the employee's extensive access to sensitive government systems as part of DOGE. They have been granted access to sensitive databases at the U.S. Social Security Administration, the Treasury and Justice departments, and the Department of Homeland Security:

TechCrunch reported in February 2025 that the same person was working at the Social Security Administration; Business Insider found the employee was part of a DOGE detachment assigned to the Department of Labor in March, The New York Times reported in April that the employee held positions at U.S. Customs and Border Protection and Immigration and Customs Enforcement bureaus, as well as the Department of Homeland Security. The Washington Post later reported that the employee had gained access to the Executive Office for Immigration Review's Courts and Appeals System.

The exposure was first detected by GitGuardian, a company specializing in identifying exposed secrets in public and proprietary environments. Philippe Caturegli, from the security consultancy Seralys, confirmed that the exposed API key allowed access to at least 52 different LLMs used by xAI, with the most recent model called "grok-4-0709" created on July 9, 2025.

This person is not the first DOGE employee to publish internal API keys for xAI: In May, KrebsOnSecurity detailed how another DOGE employee leaked a private xAI key on GitHub for two months, exposing LLMs that were custom made for working with internal data from Musk's companies, including SpaceX, Tesla and Twitter/X.

Security experts have expressed serious concerns about the operational security practices demonstrated by this incident. One leak is a mistake, but when the same type of sensitive key gets exposed again and again is a sign of deeper negligence and a broken security culture.

DOGE Employee exposes AI API Keys in source code, giving access to advanced xAI models

Read More
Cambridge Labour Party leaks data of it's members
CheckPoint allegedly breached by hacker, company denies but …
OWASP foundation reports data breach caused by wiki …
Framework Computer reports third party data breach
SmarterTools Network Breached via Unpatched SmarterMail Vulnerability