undefined | Better HN

0 pointsnextaccountic6mo ago0 comments

Are you talking about this?

    wandb_key = ...
    wandb.login(...)

It's rather weird that they would add keys to the source code like this, rather than reading from the environment or some secrets service. Rather than redacting the source, they should refactor to remove the keys from the source

0 comments

barbazoo6mo ago

One example, that's right. Another one:

    train_query = f"""
    SELECT 
      {{feature_names}},
      {",".join(labels)},
    ...
    """

and right at the top:

    cat_names = [
    ...
    ]

mvdtnz6mo ago

There's no way you got to this bit without skipping over multiple actual redactions, like SQL queries with all of the details replaced with ellipsis. Why are you cherry-picking one innocent instance when you know exactly what the parent comment is talking about?

bathtub3656mo ago

Since it’s redacted we don’t know what was here. They could be redacting the names of the environment variables or other secrets names they use for credentials since a supply chain attack could more easily exfiltrate them if they know the name.

j / k navigate · click thread line to collapse