How can you keep API keys safe in a Chrome Extension? // TRAIN BRAIN

How can you keep API keys safe in a Chrome Extension?

Concerned about keeping your API keys in a Chrome Extension? Oliver explores why JavaScript source code is inherently easy to inspect and how Chrome Web Store policies address code obfuscation versus minification. We also discuss leveraging cloud functions or server-side APIs to handle authenticated requests, ensuring your API keys remain secure and protected from extraction.
Resources:
Join the mailing list → https://goo.gle/4oiYgQy
Subscribe to Chrome for Developers → https://goo.gle/ChromeDevs
#ChromeForDevelopers #Chrome
Speaker: Oliver Dunk
Products Mentioned: Chrome

Chrome for Developers

Making the web more awesome....

How can you keep API keys safe in a Chrome Extension?

Re-imagine the web with Scoped View Transitions

Why ratings are important in the Chrome Web Store

Built-in AI in the wild: A Mastodon translation success story

Web AI on the IDE

Offline vector search with SQLite and EmbeddingGemma

Mind-controlled drones with Web AI & TensorFlow

Accelerating human-centered AI + XR innovation with XR Blocks

It doesn’t need to be a chatbot: Unlocking the product value of smaller AI models

Running Google's Gemma LLMs in the browser with MediaPipe Web

Let’s fix airplanes with CSS #DevToolsTips

Kotlin/Wasm with Zalim Bashorov - WasmAssembly Podcast

Answering your questions about Chrome Web Store discoverability

Where are passkeys stored?

Built-in AI: The next frontier for web experiences presented by Miravia

Real-time video upscaling using CNNs and WebGPU

Bangle.js - an Open Source Smartwatch

InferenceJS: Real-time computer vision in your browser

LiteRT.js, Google’s high performance WebAI runtime

Transformers.js: Building Next-Generation WebAI Applications

Web AI leaps forward on Intel AI PCs

What if you lose the device with a passkey?

Hangar CSS debugging #DevToolsTips

How biometrics relate to passkeys

Are passkeys based on biometrics?

Wasm, WebGPU, & WebNN: How compute abstraction are enabling client side AI

Don't let AI agents push your buttons - use webMCP instead!

Building a VR Assistant and llms.txt widget

Accelerating Web AI on Arm

Beyond the demo: Building the WebAI Playbook

Chrome: Browsing, building, and web in the AI era

Web AI Summit 2025: State of client side AI

Re-imagine the web with Popover

Speed up your site #DevToolsTips

Performance optimization Pitstop #DevToolsTips

WebAssembly from the Ground Up with Patrick Dubroy and Mariano Guerra

Slow server problems? Try this #DevToolsAI

Baseline is now in DevTools

Debug FCP #DevToolsAI

Debug TFFB #DevToolsAI

What is CrUX #DevToolsAI

Discover Web AI: Client side Agents, Gen AI, and machine learning in the browser

Debug INP #DevToolsAI

Debug CLS #DevToolsAI

What’s new in DevTools 139-141

Debug LCP #DevToolsAI

CG, WG, W3C, Lively—Wasm standardization with Thomas Lively - WasmAssembly

Meet the team behind Chrome for Developers

Introducing Built-in Language APIs

Built-in AI APIs overview

Benefits of client-side AI

Baseline: The simple way to check browser compatibility

What does cookie blocking mean for your site?

What are third-party cookies?

Pixel Pirate: Interactive DevTools demo

What are cookies?

Pixel Pirate #DevToolTips

Dart, Flutter, and WasmGC with Ömer Ağacan and Martin Kustermann

Go behind the scenes of your website’s CSS

Develop identity solutions without third-party cookies

Privacy pro in prep mode: Catch Natalia at #GoogleIO

How to format console logs with CSS and ANSI #DevToolsTips

Meet Sam: Software Engineer, Vibes Coder, and #GoogleIO Ready!

Experimental extensions menu

Enabling in-browser scientific computing with Wasm: David Kircos of Quadratic

Play Whack-a-Mole in your web browser with Chrome Extensions

How to style console logs: Color and more! #DevToolsTips

Develop payments solutions without third-party cookies

AI/ML for Chrome and ChromeOS

Chrome Web Store for enterprise

How CloudMosa Streams Wasm on Feature Phones

Whack-a-Mole in your browser - Is it possible!?

Add irrelevant scripts to the ignore list in Performance

Navigation management in PWAs: Techniques and best practices

What is wasi-gfx?

What’s new in DevTools: Chrome 133-135

Chrome's new extensions menu explained

Control vertical spacing with CSS text-box

Wasm on feature phones with Cloud Phone's Thomas Barrasso

State-preserving move in DOM