Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Naive users have left passwords in by mistake, only to make another mistake in thinking a commit takes care of it.


I've done this, accidentally published my livejournal passwords on a project. Now I make certain that at the very least I have a folder covered by .gitignore in my local repo that contains any auth tokens or whatnot and I double check the history before pushing it anywhere.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: