You can put it in a .env folder and do this same project with Next.js or Express to send your env variable from a server -- if you send it on the client with 'vanilla' React it's still exposed to the browser.
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Nice idea. Just a suggestion, don't put your personal access token on the repo, base64 can be decoded and it's not safe.
If not, what another way?
And since theres no scope, it is fine right? Just read only, is it?
You can put it in a .env folder and do this same project with Next.js or Express to send your env variable from a server -- if you send it on the client with 'vanilla' React it's still exposed to the browser.