You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
you don't want to expose the auth token and use env variables instead. The thread is about using it in app.json but I think it applies here as well since the the security vulnerability is in others knowing the token first and foremost.
To Reproduce
Steps to reproduce the behavior:
Check eas.json
Confirm token is there
Expected behavior
Use env variables that are loaded via dot env where needed and not committed to the repo.
The text was updated successfully, but these errors were encountered:
You should send potential security issues directly to security@bsky.app rather than opening an issue, per README.
nice catch, I emailed them. Will keep the issue open and they can close it after resolving...
TowhidKashem
changed the title
[security issue] Sentry Auth token exposed in eas.Jon
[security issue] Sentry Auth token exposed in eas.json
May 15, 2023
Describe the bug
89c975413cd543fbb683b11bec984fc2163d9a77312c41c0b4480a570f3daa65
According to this thread:
expo/sentry-expo#321
you don't want to expose the auth token and use env variables instead. The thread is about using it in app.json but I think it applies here as well since the the security vulnerability is in others knowing the token first and foremost.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Use env variables that are loaded via dot env where needed and not committed to the repo.
The text was updated successfully, but these errors were encountered: