公开(公告)号：US12293170B1

公开(公告)日：2025-05-06

申请号：US18315411

申请日：2023-05-10

Applicant: Snap Inc.

Inventor： Frederik Van Voorden ,  Aaron Wangugi ,  Ankit Sultania

IPC: G06F8/41 ,  G06F9/54 ,  G06F11/36 ,  G06F11/3668 ,  H04L9/32

Abstract: Described is a technique for securing a private secret key during a software build process for a software development kit (SDK) that includes a code implementation for an application programming interface (API), where the private secret key is for use in signing the payload of an API request for the API. Consistent with examples, a keychain service stores a private secret key. In at least one source code file for a SDK, the source code includes a macro definition, which, upon executing by a compiler, obtains a value for the private secret key. In a programming shell environment, a shell script is executed. Execution of the shell script results in executing a nested script, which queries the keychain service for the private secret key. The shell script then passes the private secret key to a build script of an automated software build tool/system, which injects the private secret key into the source code file at compile time by execution of the macro, resulting in a software product capable of using the private secret key to sign or encrypt the payload of one or more API requests.