Too Long; Didn't Read
This article is for those who have worked with API keys in Ruby or those who tend to do so. The dangers of leaving API keys hardcoded on our applications and/or projects built with Ruby are discussed below. API keys are like the keys to your house or your car, therefore, it's important to protect them to make sure they can only be used by the people and in the way you want. To help keep your API keys secure, follow these best practices: Do not embed API keys directly in code. Store them in environment variables or in files outside of your application's source tree.