Ask HN: Do you sanitize secrets before pasting code into ChatGPT?
I use AI assistants (ChatGPT/Claude) heavily for debugging, but realized
I'm constantly pasting code that contains API keys, database credentials,
and customer emails.
I try to manually redact them but honestly forget half the time.
Questions: - Is this actually a security risk? - How do you handle this in your workflow? - Would you use a tool that auto-sanitizes your clipboard?
Trying to figure out if this is a real problem or just me being paranoid.
7 comments
[ 5.3 ms ] story [ 24.6 ms ] threadYes that includes credentials.
APIs, less so.
i also change any 'brand names' that might reveal my employer