Source maps are basically files generated while building for production that can help revert a combined/minified file back to an original state.
When you build your application for production, source maps are usually generated alongside your built files which are minified already. They hold the original sources of your code and helps in debugging your code live.
However, is it safe to leave that in production because, with the source map, you can generate the real source code and able to read the unminified code?
I am not a security guy or so, I am just curious if there could be a way that could make your site insecure. Unless you have your secret/api keys hard corded or something similar.
So is it safe to ship source maps to production?