Comment on Privacy disaster as LGBTQ+ and BDSM dating apps leak private photos.
Pika@sh.itjust.works 2 weeks agomy main question in this is, why does a test engineer have the credentials to change an admin password in production. Like I get that he needs to test things but I doubt he needs access to changing profile/account settings
yoshman@lemmy.world 2 weeks ago
He had to do admin functionality regression tests before prod releases to make sure nothing broke.
The system uses SSO for logins for everything else.
He is a subcontractor who was using scripts for all his projects. I told him he really needs to use env vars for creds.