| ||Ask HN: What types of private data is stored on your dev machines?|
4 points by viraptor 9 days ago | hide | past | favorite | 2 comments |
|I'm working on a post about supply chain attacks in development and I'm looking for examples of data/files/services you have on developer machines which should be protected from rogue packages/software. Bonus points for things related to development activities - those that should not be accessible by (for example) a package being installed but are required in other dev-related actions.|
- SSH keys - both for personal use and repo updates
- package repo credentials - npm/pypi/...
- browser cookies for service logins
- cryptocurrency wallets
- confidential documents (scanned / signed documents)
What other types are you worried about they I may not be aware of?
| Apply to YC