Hacker News new | ask | show | jobs
by achamayou 2783 days ago
If the amount of traffic is predictably small though, you can be confident that it’s not uploading the entirety of your source code, so perhaps some mechanism to estqblish that would help?
1 comments
gbear605 2783 days ago
Some code is a lot more valuable than other code. For example, token files for connecting to remote servers.
link
achamayou 2783 days ago
There is no good reason for authentication secrets to be in your source tree though.

I’m not suggesting this is perfect in any case, but it would at least place an upper bound on whatever amount of IP leakage you think might happen.

link
heartbreak 2783 days ago
But do you ever edit your authentication secrets in your text editor? I edit my .env file in vim all the time.
link