Disable Travis CI integration?

[pnijjar]

I received a notification about this issue: https://github.blog/2022-04-15-security-alert-stolen-oauth-user-tokens/ . The only project I know of that had Travis CI was this one, which I think @kingscott set up? But I do not know how to disable Oauth integration for Travis CI in this repo, if that is even a thing we need to do.

Does anybody know what we should be doing in response to the advisory? Is it the case that I am incorrect and this repo is not the one that is affected?

[kingscott]

Sorry for the delay @pnijjar, I didn't see this message. I don't think I set it up, I'm seeing @qedi-r as the last (and only) person to touch the travis.yaml file.

[qedi-r]

Hm. I'm not sure I'm helpful here either. I did write the config, but never had organizational credentials to set up travis. I think it was set up before I added it? Also of note, I wrote it in the context of the regional WRVotes project.

[pnijjar]

I did not see anything in WRVotesFed. There is an integration in WRVotes:

https://github.com/CivicTechWR/WRvotes/settings/installations

but I do not have access to delete this, I think. @KristinaTaylor - do you know who has access?

I guess this is not a big deal now -- if we are hacked we are hacked. But we might clean this up, or we might leave it as-is.