Before some people say google it, I did but I would like to have some input from this community. Let's say I'm trying to build a full-stack web app that I would want people to use(and maybe commercialize). I also want to put in on Github as a side project for my resume. How can I do this properly without risking privacy issues?
I put my entire webapp, with the API keys ..SMH and had to delete all the instances ..lesson learnt!
What happened lol and how did you fix it?
I uploaded my webapp on GitHub, got a mail from gcp that my keys are public and have been compromised I could not access my instances, could not move my data and a lot of trouble porting my files and data. Just created a project and redid almost the entire project.
Separate code from data. Checkin only code on github, code should not contain PII info or credentials. However if your code has some obvious flaw, it will put your website at a greater risk for compromise
Thank you