I have an react app created by create-react-app. I have a API key and a secret key, that is stored in .env file. I created a netlify function to access the keys and fetch data from my APIs. This all works on the dev. I uploaded the files up to GitHub (minus the .env file), and used continuous deploy to deploy from there. While deploying, I added the API keys to the environment variables section. Everything works fine after deployment, but issue is that when I go to the browser and look at the source, I can see my API keys in one of the chunk.js file. I want to use netlify, so that I can deploy my app, without the keys being visible on the front end. While deploying, I had to set these two variables as well NPM_VERSION=6.14.11 and CI=false, to built my app (just incase this makes a difference). Where am I going wrong?
Below is the code where it is visible (replaced the value with XXXX)
WDS_SOCKET_HOST: void 0,
WDS_SOCKET_PATH: void 0,
WDS_SOCKET_PORT: void 0,
Any help will be appreciated, stuck on it for a while.