Remove hardcoded secrets, load API token from env #29

Merged

Claude merged 2 commits from fix/2-3-security-hardcoded-secrets into main

2026-03-23 03:50:08 +00:00

Author	SHA1	Message	Date
Claude	6c20f93901	Merge branch 'main' into fix/2-3-security-hardcoded-secrets	2026-03-23 03:50:00 +00:00
Cal Corum	e3220bf337	Remove hardcoded secrets, load API token from environment - Replace hardcoded PD API bearer token in db_calls.py with dotenv/env var - Delete scripts/supabase_doodling.py (dead scratch file with hardcoded Supabase JWT) - Add python-dotenv dependency and .env.example template - Consolidate check_prod_missing_ratings.py to import AUTH_TOKEN from db_calls - Hard fail if PD_API_TOKEN is missing to prevent silent auth failures Fixes #2, Fixes #3 Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-20 12:38:01 -05:00

Author

SHA1

Message

Date

Claude

6c20f93901

Merge branch 'main' into fix/2-3-security-hardcoded-secrets

2026-03-23 03:50:00 +00:00

Cal Corum

e3220bf337

Remove hardcoded secrets, load API token from environment

- Replace hardcoded PD API bearer token in db_calls.py with dotenv/env var
- Delete scripts/supabase_doodling.py (dead scratch file with hardcoded Supabase JWT)
- Add python-dotenv dependency and .env.example template
- Consolidate check_prod_missing_ratings.py to import AUTH_TOKEN from db_calls
- Hard fail if PD_API_TOKEN is missing to prevent silent auth failures

Fixes #2, Fixes #3

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-20 12:38:01 -05:00

Remove hardcoded secrets, load API token from env #29

2 Commits