The information that was in there, in terms of access—much of it was dummy codes. A couple were not, but as soon as we learned of the access, we secured all of those servers and changed all of the codes. We have no records of any access to anything else other than the code repository.
As I said, we're going to work carefully through this process, following best practices and the guidelines from the Office of the Information and Privacy Commissioner.