is not safe to put my api ? #144414

GreatUsers · 2024-11-13T12:57:30Z

GreatUsers
Nov 13, 2024

Select Topic Area

Question

Body

is not safe to put my api ?

Syeda-Eman · 2024-11-13T13:23:38Z

Syeda-Eman
Nov 13, 2024

It is not safe to include your API keys or other sensitive credentials directly in your code when uploading to GitHub. Here are some best practices for handling API keys securely:

Never commit API keys to your repository; add them to your .gitignore.
Use environment variables to keep keys separate from your code.
For local development, store keys in a .env file and include it in .gitignore.
Provide a sample .env file in your repository with placeholder values.
Use your hosting platform's secret management for production deployments.
If you accidentally commit sensitive info, change your API keys and remove them from Git history.
Consider a key management service for complex applications.
For open-source projects, clear instructions should be offered for users on how to obtain their API keys.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Community

is not safe to put my api ? #144414

{{title}}

Replies: 1 comment

{{title}}

Select a reply

GitHub Community

is not safe to put my api ? #144414

GreatUsers Nov 13, 2024

Select Topic Area

Body

Replies: 1 comment

Syeda-Eman Nov 13, 2024

GreatUsers
Nov 13, 2024

Syeda-Eman
Nov 13, 2024