Skip to content

security: document hardcoded OAuth credentials and password handling#89

Open
AidanDalyAus wants to merge 1 commit intoCJNE:mainfrom
AidanDalyAus:security/document-credential-handling
Open

security: document hardcoded OAuth credentials and password handling#89
AidanDalyAus wants to merge 1 commit intoCJNE:mainfrom
AidanDalyAus:security/document-credential-handling

Conversation

@AidanDalyAus
Copy link
Copy Markdown

@AidanDalyAus AidanDalyAus commented Apr 5, 2026

Documents hardcoded CLIENT_ID/X_CLIENT_ID and plaintext password persistence in Credentials NamedTuple. Adds SECURITY.md with recommendations.

@AidanDalyAus
security: document hardcoded OAuth credentials and password handling
878f1a5 
CLIENT_ID and X_CLIENT_ID hardcoded in const.py.
Password stored in Credentials NamedTuple for connection lifetime.

Co-Authored-By: Aidan Daly <me@aidandaly.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@AidanDalyAus