OpenDev.org, which hosts the official OpenStack source code, on Tuesday tore down its Gerrit deployment after realizing it had been secretly hacked two weeks ago.
The site has asked users to review recent commits to their projects to make sure they don’t contain any backdoored or other malicious code.
As well as being home to OpenStack's blueprints, OpenDev hosts a number of other Git-based repositories pretty much along the lines of GitHub and similar source-hosting outfits. It uses Google-built Gerrit to provided a web-based environment for teams to review each others' work, approve or deny changes to code bases, and otherwise collaborate on programming projects.
On Tuesday, OpenDev published a since-removed maintenance notice, and issued a openstack haven opendev yanks gerrit review after admin account compromised weeks
