@vanderms
Posted
Well done!
You don't need to use Github secret key in this challenge.
Actually, Github has a public API that you can use without keys. Read: https://docs.github.com/en/rest/guides/getting-started-with-the-rest-api#authentication, specially, the part about unauthenticated clients.
You can access the public API with a get request to the URL: https://api.github.com/users/{usename}, e.g https://api.github.com/users/octocat
I am not sure what token you have used, but maybe exposing the Github key in your project can be a serious security risky for your Github account.
Marked as helpful
@jchapar
Posted
@vanderms Thanks Vander I appreciate it! I updated and used the Public API. Removed the Github key from the repo.
@vanderms
Posted
@jchapar, my pleasure to help.
Don't forget to delete the key on Github, since it is still possible to see the secret key on the commits history of your repo.