Authentication

Project with API keys

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

API keys are used for authentication, they are simple encrypted strings that identify an application without any principal. Project '{CloudAccount}' is using API keys - {CloudAccount.GcpApiKey}. API keys are insecure because they can be viewed publicly, such as from within a browser, or they can be accessed on a device where the key resides. It is recommended to not use API keys in order to avoid these security risks