@GazTheJourno Depends on what it is. If it's a git repo, then yes - because you're likely going to need to clone it down to explore properly & assess impact.
If it was (say) an unsecured MongoDB, then not so much. You *might* check if you've sufficient access to do so though