Ask HN: What types of private data is stored on your dev machines?
2 by viraptor | 1 comments on Hacker News.
I'm working on a post about supply chain attacks in development and I'm looking for examples of data/files/services you have on developer machines which should be protected from rogue packages/software. Bonus points for things related to development activities - those that should not be accessible by (for example) a package being installed but are required in other dev-related actions. For example: - SSH keys - both for personal use and repo updates - package repo credentials - npm/pypi/... - browser cookies for service logins - cryptocurrency wallets - confidential documents (scanned / signed documents) What other types are you worried about they I may not be aware of?