🐞 [BUG] - The DB is exposed.

[harsh-haria]

Description

The connection URL of MongoDB server is exposed in the code. I can fix this. Can you assign this issue to me? working on this under GSSOC 2024.

Current behaviour

MongoDB URL is directly in the code itself. Anyone with the link can use it to access the db and make changes to the database,

Expected behaviour

The URL should have been in an environment file which is not tracked on Github and is on the hosting server only. The link should be then passed in the code by the process. This makes sure that no one apart from the creators get access to the live database. And for the contributors, we can add the steps in the readme file so they can create their own local version of the database and work on it rather than working on the live database itself.

Reproduction steps

1. Go to 'db/db.js'
2. Scroll down to 'Line 18'
4. See the exposed link.

Screenshots

masked the link for ensuring safety

Logs

No response

Browsers

Microsoft Edge

OS

Windows

Are you contributing for a program ?

GSSoC2023

Code of Conduct

• [X] I have read and agree to the Contributing Guidelines of this project.

[github-actions[bot]]

Hello @harsh-haria! Thank you for raising this issue.

Please make sure to follow our Contributing Guidelines. 💪🏻 Don't forget to ⭐ our Project-Amupedia. 📔

Our review team will carefully assess the issue and reach out to you soon! 😇 We appreciate your patience! 😀

[amanjaiswal7236]

I like to work on this issue under GSSOC'24 I can resole this issue by adding MONGODB_URL in the .env file as standards.