Tags: Stripe

Widespread Exposure of API Keys Across Thousands of Websites Revealed
Widespread Exposure of API Keys Across Thousands of Websites Revealed Digital Trends
Researchers who scanned millions of webpages discovered that thousands of sites are unintentionally publishing API credentials for major services such as Amazon Web Services, Stripe and OpenAI. The majority of leaks originate from JavaScript files that are publicly accessible, allowing anyone to misuse the keys. The study uncovered 1,748 distinct credentials across nearly 10,000 pages, with some keys remaining exposed for up to a year or longer. Experts say the problem stems from developers embedding private keys in front‑end code, and they recommend live‑site scanning, stricter tool controls and better detection by service providers. Read more

OpenAI Shifts Focus from Instant Checkout to Product Discovery in ChatGPT
OpenAI Shifts Focus from Instant Checkout to Product Discovery in ChatGPT TechCrunch
OpenAI announced it will de‑prioritize the Instant Checkout feature that let users purchase items directly within ChatGPT. Launched in September, the checkout tool failed to attract significant use, prompting the company to pivot toward enhancing product discovery and detailed consumer information. Merchants can still integrate their own checkout experiences through apps in the chatbot, while OpenAI develops its Agentic Commerce Protocol with Stripe to serve as a centralized hub for product research. Read more