Skip to content
Better HN
Top
New
Best
Ask
Show
Jobs
Search
⌘K
0 points
_pdp_
2mo ago
0 comments
Save
Share
I am not saying this is the reason for this compromise but the sudden explosion of coding assistant like claude code, and tools like openclaw is teaching entire crop of developers (and users) that it is ok to have sensitive credentials .env files.
0 comments
3 comments · 1 top-level
default
top
newest
oldest
ptx
2mo ago
· 2 in thread
Where would you suggest putting the sensitive credentials?
_pdp_
OP
2mo ago
Not in .env files next to your code that is exposed to supply chain risks.
jvwww
2mo ago
infisical is a great solution
j
/
k
navigate · click thread line to collapse
