⚠️ You might be exposing your API token, is this intended?

#2
by token-scanner - opened

Please check Space app file as you might be exposing your API token.
We recommend you to use Repository secrets (environmental variables) in your Space settings. Afterwards, you can use it like:

import os
HF_TOKEN = os.getenv("HF_TOKEN")

Read more here. Once this is fixed, we strongly advise you to invalidate or delete your token in your settings, so that no one else can use it.

Sign up or log in to comment