HACKER Q&A
📣 sachinjain

How do you share cURL requests within your company?


cURL request might contain sensitive data like Auth headers, exact request payload. Also sometimes cURL requests are obtained from logs of a user session.

And, devs need to share cURL requests in order to reproduce an issue and communicate context to another dev.

I know of a platform called Zerobin to share secure messages. I am thinking to host an internal server of Zerobin and use that to share cURL & other secrets within the company.

How are you dealing with this?

  👤 john_the_writer Accepted Answer ✓
Slack. Most auth keys are ephemeral. And testing always happens in staging env's or local. So the keys aren't hiding anything of value. No personal data on "lisa simpson's" account.

If it's something we'd worry about, we just cut the auth token out. Bugs don't typically happen to "one user" they happen to all.