fabric icon indicating copy to clipboard operation
fabric copied to clipboard

Published 20 hours ago verified publisher icon danielmiessler

Possibly exposed token

Open RichardoC opened this issue 1 year ago • 1 comments

https://github.com/danielmiessler/fabric/blob/main/infrastructure/server/fabric_api_keys.json#L3 looks like an exposed token, you might wish to revoke it and replace this with a placeholder/leave it blank.

Sorry if this is a false alarm!

RichardoC avatar Jan 30 '24 14:01 RichardoC

I'd recommend using the dotenv library, a .env file and .gitignore to keep the .env file out of source control.

See python-dotenv

matthewdeanmartin avatar Jan 31 '24 15:01 matthewdeanmartin

It's not an exposed token. It's an example for controlling client-to-server auth during one's self-setup. But good eye, I appreciate you.

danielmiessler avatar Feb 01 '24 05:02 danielmiessler

I use GitGuardian to double-check if I didn't miss a key or password

nechry avatar Feb 06 '24 21:02 nechry