Home > OS >  Is sensitive data in NextJS .env file safe if it has NEXT_PUBLIC prefix?
Is sensitive data in NextJS .env file safe if it has NEXT_PUBLIC prefix?

Time:10-18

Can a malicious actor easily access .env variables in nextJs that have the NEXT_PUBLIC prefix or as they just as safe as the other .env variables?

CodePudding user response:

Yes, NEXT_PUBLIC prefix allows NextJS to send the variable to the client's browser.

From the docs:

The value will be inlined into JavaScript sent to the browser because of the NEXT_PUBLIC_ prefix.

Don't use sensitive data with the NEXT_PUBLIC prefix.

Page link:https//www.codepudding.com/os/579140.html

Prev:Generate .abb file from apk or using cordova
Next:Using Flask how do I run the same Python script in multiple differnet shells with different argument
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding