In response to a security incident disclosed on January 4, 2023, CircleCI has taken multiple steps to mitigate potential risks and ensure the security of its platform. These measures include partnering with AWS to notify customers about potentially impacted tokens, rotating GitHub OAuth tokens, and revoking all personal and project API tokens created before January 5, 2023. CircleCI has also provided instructions for customers to rotate secrets and keys stored on their platform and has updated their tools to assist in discovering stored secrets. Despite the incident, CircleCI assures customers that they can continue to build and that no unauthorized access has occurred. The company emphasizes the importance of rotating access keys and secrets and offers support through its engineering and security teams, while also working closely with third-party investigators to validate their actions.