You were just being true to your name, by offering your revision history!
On a more serious note, this is a great example of how to handle a vulnerability report - fix it, change your processes, and say thank you! (geek_at could probably have done better by disclosing this in private first, though)
I figured there wouldn't be any secrets in the git and also if your site is on hacker news (or top of a comment thread on hn) you are glued to it so I thought they'd fix it fast
On a more serious note, this is a great example of how to handle a vulnerability report - fix it, change your processes, and say thank you! (geek_at could probably have done better by disclosing this in private first, though)