Y
Hacker News
new
|
ask
|
show
|
jobs
by
shmed
3339 days ago
We dont really have any proof that this is the only code that got executed. Whoever owned the OAuth account had direct access to your information from google's servers, he wouldnt need to go through you as a client to get it.