We have published a security advisory to https://posthog.com/handbook/company/security-advisories#PSA-2026-00001

A security researcher privately disclosed a vulnerability that allowed access to production credentials. We've fixed the underlying issue and are actively working on additional hardening.

As a precaution, we immediately rotated our most sensitive production credentials. We're now rotating our remaining credentials, which may cause brief, intermittent disruptions while the rollout completes.

Based on our investigation, we have no evidence that customer data was accessed or that the vulnerability was exploited by anyone other than the researcher who reported it. We'll publish a full postmortem with more detail within the next 24 hours.

We are rotating keys after a security research team was able to confirm an exploit in one of our AWS environments. We're working with the security research team on the issue. No keys were publicly available, and no data has been compromised. You may see impacts on exports, reverse proxies, and other services. We'll have more updates as we continue to work on this incident.

We are currently performing unplanned maintenance, which may temporarily impact availability.