SAILPOINT disclosed that unauthorized access to a subset of its GitHub repositories occurred on 20 April 2026, with the incident quickly contained after being detected by its incident response team, aided by a third‑party cybersecurity firm. The company stated that the root cause was a vulnerability in a third‑party application and that remediation has been completed. According to the U.S.
Securities and Exchange Commission (SEC), the investigation found no evidence that customer data in SailPoint’s production or staging environments was accessed or that services were interrupted. SailPoint also said it directly notified affected customers and that no further customer action appears necessary at this time. The firm did not disclose additional details about the breach or the type of data potentially compromised.