A review of the open source code shows an account under the executive's name made a mistake that could lead to the kind of breach reported this weekend.