Credential harvesting from code repository