Currently when you do HTOP you can read the master key from the server side. Even if you have unprivileged users. To improve security it should pass such secret values via the environment, since those are not readable by other unprivileged users or processes.
Meilisearch master key will be given as env variable, so it can not be read by htop or unprivileged users
-
Florian Kwakkenbos moved item to project Servers
1 day ago -
Florian Kwakkenbos created the item
1 day ago