Scott D DeWitt's employee details leaking on port-monitor tar gz

[cce-dsantos]

Just to let you guy know, an employ details have been leaked on nri-port-monitor.tar.gz
Once follow install instructions just before downloading it and listing its contents the following is shown:

root@522bda29148b:/opt# tar tvf nri-port-monitor.tar.gz 
drwxr-xr-x sdewitt/staff     0 2019-08-29 20:20 ./
drwxr-xr-x sdewitt/staff     0 2019-08-29 20:20 ./nri-port-monitor/
-rw-r--r-- sdewitt/staff   526 2019-08-29 20:20 ./nri-port-monitor/LICENSE
drwxr-xr-x sdewitt/staff     0 2019-08-29 20:20 ./nri-port-monitor/bin/
-rw-r--r-- sdewitt/staff  1754 2019-08-29 20:20 ./nri-port-monitor/README.md
-rw-r--r-- sdewitt/staff   355 2019-08-29 20:20 ./nri-port-monitor/port-monitor-definition.yml
-rw-r--r-- sdewitt/staff   221 2019-08-29 20:20 ./nri-port-monitor/port-monitor-config.yml.sample
-rwxr-xr-x sdewitt/staff 3955239 2019-08-29 20:20 ./nri-port-monitor/bin/port-monitor

it looks to be related to https://github.com/sdewitt-newrelic

Another funky behaviour is that when untar'ing the file will decompress the . folder changing current path ownership to Scott's, which has caused me some trouble