Y
Hacker News
new
|
ask
|
show
|
jobs
by
vidarh
841 days ago
If serving up metadata about what the site already makes accessible via the API will get their data stolen, then the actual problem is they're not applying access controls to the data, not the introspection.