Hey! Just a heads-up -- I ran a scan and it looks like an API key got committed to this repo, and it's still active.
What's the risk?
The key is still live -- anyone who comes across it can use it, burning through your credits or quota.
What to do:
- Revoke the key in your minimax dashboard
- Generate a new key and swap it in
- Delete the key from the committed file and add
.env to .gitignore
- Check your minimax usage logs for anything suspicious
- Scrub the key from git history with
git filter-branch or BFG
Once you've sorted it out, just close this issue.
This is a free public-service scan. If it helped, you can buy me a coffee at https://ko-fi.com/cheeseup (no pressure at all).
Hey! Just a heads-up -- I ran a scan and it looks like an API key got committed to this repo, and it's still active.
activate-minimax.shWhat's the risk?
The key is still live -- anyone who comes across it can use it, burning through your credits or quota.
What to do:
.envto.gitignoregit filter-branchor BFGOnce you've sorted it out, just close this issue.
This is a free public-service scan. If it helped, you can buy me a coffee at https://ko-fi.com/cheeseup (no pressure at all).