Postman getting hit is scary. For many teams, it's effectively an unmanaged password manager for API keys.
No one should have sensitive/production keys in Postman. That's a huge security lapse in the first place.
My devs don't have access to production keys at all (and would never need them).
alt Hacker News
No one should have sensitive/production keys in Postman. That's a huge security lapse in the first place.
My devs don't have access to production keys at all (and would never need them).