6.3 KiB
Dear GitHub :
I am the [private] of Shenzhen Poka Electronic Equipment Co., Ltd. On behalf of the company, I am authorized to act on the copyright owner's behalf.
The following is the authorization letter from the company authorizing me to negotiate and deal with it.
[private]
My claim involves content on GitHub,and the Zendesk ticket number of my previously submitted notice are 2780923 and 2785981.
Recently, customers reported that our product source code was leaked on GitHub. We will investigate immediately. After confirming the source code, it was found that it was leaked on the GitHub website by several former employees of our company between [private].It has been [private] now, and after excluding and confirming resigned employees, two accounts of the company's users involved in the leak can no longer be found. Therefore, we sincerely hope that GitHub will actively cooperate to verify and delete the leaked source code.
We still hope that you will disable access to or remove the infringing source code library as soon as possible, as this is very important to us. Customers discovered that source code leaks caused security risks, which had a serious impact on us. This infringing work includes the following 5 complete source code libraries. Please disable public access to this repository as soon as possible to prevent it from being copied by other users and creating a higher risk.
This source code is the product code of a software project developed by our company for customers. My company owns its ownership.
The following are the details of the allegedly infringed works.
Since the software system is deployed on the customer’s intranet, it cannot be accessed through external links.
Software product name: RMB prefix number information management software(冠字号码信息管理软件)
It was developed in 2014 and has been used and maintained to this day.
The function of this software product is to collect RMB prefix number information, aggregate it to various commercial banks for file analysis and storage, and then report it to the headquarters of the People's Bank of China, and continue business interaction between commercial banks and the People's Bank of China.
The leaked code are the file parsing program and a synchronization program for information exchange between banks.
The parsing program is: [invalid].
The synchronization program is divided into two different versions on the People's Bank of China side and the commercial bank side, involving a total of 4 warehouse addresses in the two regions.
Langfang Commercial Bank: https://github.com/pokayf-java/commercialbanksposp_lf
Langfang People's Bank of China: https://github.com/pokayf-java/peoplebanksposp_lf
Guangxi Commercial Bank: https://github.com/pokayf-java/commercialbanksposp_gx
Guangxi People's Bank of China: https://github.com/pokayf-java/peoplebanksposp_gx
Some files of the source code we distribute also include the name of the software product and the company name, which can also prove that the source code belongs to our company.
The software product name is: RMB Prefix Number Query Management System(Chinese name :人民币冠字号码查询管理系统)
Company name is: Shenzhen Poka Electronic Equipment Co., Ltd(Chinese name :深圳宝嘉电子设备有限公司).
Line 473 of the file linked below indicates that the system supplier is our company name, which proves that the source code belongs to our company.
https://github.com/pokayf-java/commercialbanksposp_gx/blob/dev/src/main/webapp/query.jsp
[private]
Owner copyright information is provided below:
Copyright owner: Shenzhen Poka Electronic Equipment Co., Ltd. (深圳宝嘉电子设备有限公司)
It has registered software copyright twice, and the software version has been upgraded from V2.0 to V5.0.
The two copyright registration certificate numbers are: 2014SR005758, 2017SR463102
Because the online verification URL requires a registered user to view it. We took screenshots of the webpage to prove the legitimacy of the online verification. Here are the query links and screenshots:
Copyright 2014SR005758
[private]
[private]
Online verification screenshot:
[private]
Copyright 2017SR463102
[private]
Online verification screenshot:
[private]
The following repositories need to be taken down.
https://github.com/pokayf-java/commercialbanksposp_lf
https://github.com/pokayf-java/peoplebanksposp_lf
https://github.com/pokayf-java/commercialbanksposp_gx
https://github.com/pokayf-java/peoplebanksposp_gx
[invalid]
The employee code of conduct and confidentiality agreement clearly stipulate that the project products developed for the company during the period of employment belong to the company and may not be used for other purposes or provided to third parties, let alone disclose company secrets. No project-related source code files can be leaked or released without the company's permission.
Without the company’s knowledge, employees secretly uploaded and saved source code products of related projects during their employment, which violated the company’s confidentiality system.
We have conducted a detailed review of the project code and its branches and confirmed that all source codes belong to the company’s project products and are actually run and used on the customer, which has brought huge security risks to the customer’s products.
The product source code does not obtain any open source license,
So, the best solution to suspected infringement is to delete it as soon as possible.
After investigation, no contact information of the alleged infringer was found.
I have a good faith belief that use of the copyrighted materials described above on the infringing web pages is not authorized by the copyright owner, or its agent, or the law.
I have taken fairuse into consideration.
I swear, under penalty of perjury, that the information in this notification is accurate and that I am the copyright owner, or am authorized to act on behalf of the owner, of an exclusive right that is allegedly infringed.
I have read and understand GitHub's Guideto Submitting a DMCA Takedown Notice.
Thank you for your understanding and support, and we look forward to handling the removal matter as soon as possible.
[private]
Phone:[private]
Business Mail address:[private]
[private] address: [private]
Shenzhen Poka Electronic Equipment Co., Ltd.