You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Apr 4, 2026. It is now read-only.
Currently Goldsky requests are made by frontend components which exposes the key to the public. We want to create a Next API endpoint through which we can proxy requests so that the API key is not exposed.
Details ποΈ
Currently we are using NEXT_PUBLIC_GOLDSKY_BASE_API_URL. Instead we need to make this environment variable private GOLDSKY_BASE_API_URL and accessible only to the backend so that it is not exposed to the public. It would also be smart to rotate the API key since it has been public in production since the creation of this issue.
Description ποΈ
Currently Goldsky requests are made by frontend components which exposes the key to the public. We want to create a Next API endpoint through which we can proxy requests so that the API key is not exposed.
Details ποΈ
Currently we are using
NEXT_PUBLIC_GOLDSKY_BASE_API_URL. Instead we need to make this environment variable privateGOLDSKY_BASE_API_URLand accessible only to the backend so that it is not exposed to the public. It would also be smart to rotate the API key since it has been public in production since the creation of this issue.See TODO comment for context:
gnars-frontend/packages/webapp/.env.example
Line 18 in f54cc20
Acceptance Criteria βοΈ