Y
Hacker News
new
|
ask
|
show
|
jobs
by
t0duf0du
298 days ago
Even with proper sandboxing, storing all sensitive credentials as environment variables is still a security anti-pattern. ENV vars are too easily accessible - any process can just run ENV.to_h and dump everything.