In the latest episode of ‘Things Developers Wish They Hadn’t Done,’ over 600 Laravel applications have been transformed into a hacker’s amusement park due to the accidental public release of APP_KEYs on GitHub. That’s right, folks—these keys are now the hottest collectibles in the cybercriminal world, akin to Charizard cards in the Pokémon universe.

According to GitGuardian, the leaked APP_KEYs, essential for encrypting sensitive data, are now freely available to anyone with a mouse and an unhealthy curiosity. When questioned about this blunder, developers shrugged, saying ‘Security through obscurity is a valid strategy… right?’ before quickly changing the subject.

Experts have likened this situation to leaving the keys to your entire house, car, and bank vault taped to the front door with a note saying ‘For the right person.’ The cybersecurity community is now rushing to create ‘Key Anonymous,’ a support group for developers dealing with the trauma of seeing their prized APIs pawed through like free candy at a parade.