Nick Andersen, the acting director of the Cybersecurity and Infrastructure Security Agency, is facing a firestorm on Capitol Hill this week after a catastrophic security lapse was discovered on a public website. A federal contractor reportedly created a public GitHub profile titled "Private-CISA" and uploaded a vast trove of agency secrets. The leak included plaintext credentials, passwords, and AWS GovCloud keys that protect the nation's most sensitive infrastructure. For months, the keys to the kingdom were left in the ignition for any rogue actor or foreign adversary to find.

"This reported incident raises serious questions about how such a security lapse could occur at the very agency charged with helping to prevent cyber breaches," Senator Maggie Hassan said in a letter demanding a full briefing. While CISA has claimed there is no indication that sensitive data was compromised, the breach has left the agency’s reputation in tatters. Lawmakers from both parties have expressed "serious concerns" regarding internal policies that allow contractors to handle authentication credentials with such reckless disregard for the public safety. In an age of increasing digital warfare, the hollowing out of federal competence has left the American perimeter dangerously porous.