“How the hell did you circumvent that security?” asked the systems architect in the Slack channel we had open for communication during the penetration test.

He was referring to how I could possibly have just committed a (benign) file called PENTEST.txt to their private code repository on Github …