Fsk196 / BlogApp

1 stars 0 forks source link

Sensitive Information Exposed #1

Open hackelite01 opened 3 weeks ago

hackelite01 commented 3 weeks ago

Hi,

I noticed that the file SECRETKEY.txt in this repository contains sensitive information such as API keys and project IDs. Exposing these details in a public repository is not secure as it could lead to unauthorized access to your services and data.

Suggested Action:

Potential Risks:

For more information on securely managing sensitive information, refer to the GitHub documentation on secrets.

Thank you.

Fsk196 commented 3 weeks ago

Hey thankyou so much for noticing that as i had forgot to remove that :)

hackelite01 commented 3 weeks ago

yeah, but simply deleting the file will not secure the repository, as the keys can still be found in the commit history. I suggest: