Reply to post: "Protecting secrets during development is a tough problem"

Codecov dev tool warns of stolen credentials from compromised script, undiscovered for two months

Pascal Monett Silver badge

"Protecting secrets during development is a tough problem"

Nonsense.

The only thing you need to do is not hook your internal code to someone else's code repository.

It's the cancer of today's attitude regarding the Internet : I'll just link that bit of code to my project, what's the worst that can happen ?

Well this.

Take that code inside, check it out and make sure it does what it says.

But of course, to do that you have be an actual programmer, not just a muppet stringing other people's work together.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021