[pseudotrash]

It seems postman has put collections behind a paywall so timing for this is great. Does ReceipeUI manage secrets or have some suggestions to deal with this to avoid things leaking into shared cloud storage?

[Volbohel]

Storing secrets in the cloud has been a top concern for me, which is why we don't do it and one of the main reasons why the code is open sourced.

Currently secrets are just stored locally on desktop and web via IndexDB. I'd love to hear people's thoughts on this as well!

[myfonj]

One related thing I haven't learned from a glance at the pitch and GH:

Does the desktop app make direct HTTP requests to target resources? Or are they similarly to web-app proxied through recipeui.com?

Plus, is there a way for the web-app to bypass that proxy, when the target resource allows that in CORS (naturally)(or when there is some browser extension that does it on dev's side)?

[Volbohel]

Desktop App is better because it directly makes the request!

Web app will have a custom proxy filter or just allow you to make the request if CORS is not an issue soon. We’ll add this to a settings panel.

Thanks for being this up, we’ll make this more specific on our GitHub