Avoid displaying password in publicly accessible code. For example, store password in a separate config file that is not uploaded to GitHub. If no password is configured, then this advice might not apply, but in that case, be aware that databases not protected by a password are vulnerable to attack.
QuestionsAndAnswersAPI/database/db.js
Line 5 in 9e8ff4f
Avoid displaying password in publicly accessible code. For example, store password in a separate config file that is not uploaded to GitHub. If no password is configured, then this advice might not apply, but in that case, be aware that databases not protected by a password are vulnerable to attack.