| Subject: | Net::Google::AuthSub objects store the password |
I found this inside of the login() method when looking through the
source of Net::Google::AuthSub:
$self->{user} = $user;
$self->{pass} = $pass;
Since this value is not referenced again, I can think of no legitimate
reason for keeping hold of the password and I can think of lots of
reasons not to. The password should be forgotten as soon as possible.
Cheers,
Sterling