Git is a complex protocol that tracks the full history of a code repository across commits and branches. This means that a Secret (e.g. “password123”) could end up proliferating across many different branches, files, and/or commits. Remediating/removing a single instance of the Secret on one commit may provide a false sense of security, since the Secret is still available elsewhere throughout the repo. Nightfall for GitHub intentionally produces a unique Violation per instance of a Secret across your code base, so that you can hunt down every instance of the Secret and reduce the chance of compromised credentials.