Twitter patched a bug that could have led to the disclosure of developer information, such as application programming interface (API) keys and user access tokens. Details about Twitter applications could have been stored in the browser's cache when the developer visited the developer.twitter.com website.
More from Twitter:
- Twitter said it had no evidence that the developers' API keys and tokens were stolen.
- The fix involved changing the cache instructions that developer.twitter.com sends to the browser to stop it from storing information about apps or accounts.
- The social media giant recommended that developers who visited developer.twitter.com regenerate their app keys and tokens.