My project url and service_role secret key got exposed by sloppy Chat GPT
I tried the dashboard (with its new changes), asked the AI assistant and only got reams of verbose vague directions, sought help from Google search AI with only outdated and completely incorrect information, sent request to support and was informed they don't help free tier users, but I could upgrade. Can anyone give me clear instructions that actually work to fix my leak problem?
2 Replies
URL is expected to be exposed.
For service_role you need to go in and change it in the dashboard by changing the JWT secret.
Is your app live?
https://supabase.com/docs/guides/api/api-keys#what-to-do-if-a-secret-key-or-servicerole-has-been-leaked-or-compromised
Your project url is public, so don't worry about that.
And you can change your service role key. 🙂