top | item 44570169

(no title)

Wild how one leaked xAI API key opened up access to 52 LLMs, including a brand-new Grok model, and they didn’t revoke it right away.

This shows how careless secret management can scale into a huge breach, especially when the same org handles sensitive data.

Shouldn’t teams building with LLMs have automated checks to catch exposed keys before they hit public repos?

discuss

Cthulhu_|7 months ago

They should, but they're young, naive and rich, a new generation of "move fast and break things", except this time they've been inserted into the government by a regime who doesn't care and/or who may have the intent to just leak the public's information.