I've created an "RH-Internal-Only" tag for topics. Topics containing Red Hat-confidential information such as internal server urls and so forth, should be tagged with this tag, and the RFE is that the system should warn when this content is included in a book / other output and possibly disallow certain combinations of operations based on this tag. For example: we could even check the publican.cfg content in the content spec to enforce that no content spec can be tagged against the public git tag *and* contain RH-Internal-Only tagged topics. This will prevent private information from being published.
Added in 0.24.0 If a topic is tagged with the Internal-Only tag a message will be displayed when pushing, validating or building. The message is "The topic is an internal-only topic and contains sensitive information. Ensure you are not publishing this publicly."
As for the publican.cfg it's impossible with out a list to determine if the git repo is a public one. Also doing this would then bind the processor to those repo, which shouldn't happen.
Closing and setting as current release as no QA was performed by the original reporter. If there is still an issue with this bug still than please re-open it.