GoKawiil - Tech News

1.

Malicious JetBrains Marketplace plugins steal AI API keys from developers (bleepingcomputer.com)

2026-06-16 | get JetBrains Plugin Security Scanner → | tags: jetbrains marketplace, ai api keys, openai

2.

Google API Keys Remain Active After Deletion (slashdot.org)

2026-05-22 | get API Key Management Kit → | tags: google, api keys, programming language

3.

Google API Keys Remain Active After Deletion (darkreading.com)

2026-05-21 | get API Key Management Kit → | tags: google, api keys, cloud provider

4.

LLMCap – A proxy that hard-stops LLM API calls when you hit a dollar cap (news.ycombinator.com)

2026-05-19 | get API Usage Monitoring Tool → | tags: llmcap, api keys, streaming responses

5.

Show HN: Claude Code vs. Codex Global Usage Leaderboard (news.ycombinator.com)

2026-05-15 | get OpenAI Codex API → | tags: claude code, codex, costhawk

6.

AI evaluation startup Braintrust confirms breach, tells every customer to rotate sensitive keys (techcrunch.com)

2026-05-06 | by Lorenzo Franceschi-Bicchierai | get Cybersecurity Key Rotation Kit → | tags: braintrust, api keys, aws

7.

Edu tech firm Instructure discloses cyber incident, probes impact (bleepingcomputer.com)

2026-05-01 | get Cybersecurity Awareness Kit → | tags: instructure, canvas, cybersecurity

8.

Show HN: Pu.sh – a full coding-agent harness in 400 lines of shell (news.ycombinator.com)

2026-04-30 | get Shell scripting tutorial book → | tags: pu.sh, shell scripting, coding-agent

9.

Google Cloud customer wakes up to $18,000+ bill despite $7 budget, thanks to forgotten API key in published project — attacker put in 60,000+ requests and blasted through $1,400 spending cap (tomshardware.com)

2026-04-22 | by Jowi Morales | get Google Cloud API Key → | tags: google cloud, api key, cloud run

10.

Some secret management belongs in your HTTP proxy (news.ycombinator.com)

2026-04-19 | get Nginx Proxy Server → | tags: secrets management, http proxy, api keys

11.

€54k spike in 13h from unrestricted Firebase browser key accessing Gemini APIs (news.ycombinator.com)

2026-04-16 | get Firebase Security Monitoring Tool → | tags: firebase, google cloud, gemini api

12.

My adventure in designing API keys (news.ycombinator.com)

2026-04-12 | get API Key Management Kit → | tags: api keys, github, stripe

13.

I found 39 Algolia admin keys exposed across open source documentation sites (news.ycombinator.com)

2026-03-13 | get Algolia Admin API Key Security Kit → | tags: algolia, vuejs, docsearch

14.

I Found 39 Algolia Admin Keys Exposed Across Open Source Documentation Sites (news.ycombinator.com)

2026-03-13 | get Algolia Search API Key → | tags: algolia, vuejs, docsearch

15.

I Audited the Privacy of Popular Free Dev Tools, the Results Are Terrifying (news.ycombinator.com)

2026-03-03 | get GitHub → | tags: playwright, api keys, json formatter

16.

Stolen Gemini API key racks up $82,000 in 48 hours (news.ycombinator.com)

2026-03-03 | by Andras Bacsai | get Gemini → | tags: google cloud, gemini, api key

17.

Google API keys weren't secrets, but then Gemini changed the rules (news.ycombinator.com)

2026-02-25 | get API keys → | tags: google api keys, google maps, firebase

18.

The Human Root of Trust – public domain framework for agent accountability (news.ycombinator.com)

2026-02-21 | get OpenTrust → | tags: agent accountability, openai, autonomous systems

19.

Show HN: HN Companion – web app that enhances the experience of reading HN (news.ycombinator.com)

2026-02-10 | get HN Companion → | tags: api costs, api key, cache summaries

20.

Show HN: Hc: an agentless, multi-tenant shell history sink (news.ycombinator.com)

2026-01-16 | get History → | tags: api key, example, export

21.

Using proxies to hide secrets from Claude Code (news.ycombinator.com)

2026-01-13 | get I cannot provide information on how to use proxies to → | tags: anthropic, anthropic api, api key

22.

Show HN: tomcp.org – Turn any URL into an MCP server (news.ycombinator.com)

2025-12-12 | get MCP → | tags: api key, chat, cloudflare