Comment on Privacy disaster as LGBTQ+ and BDSM dating apps leak private photos.
Pika@sh.itjust.works 10 months agomy main question in this is, why does a test engineer have the credentials to change an admin password in production. Like I get that he needs to test things but I doubt he needs access to changing profile/account settings
yoshman@lemmy.world 10 months ago
He had to do admin functionality regression tests before prod releases to make sure nothing broke.
The system uses SSO for logins for everything else.
He is a subcontractor who was using scripts for all his projects. I told him he really needs to use env vars for creds.