Twitter developers are being warned of a security bug that may have exposed their applications’ application keys and access tokens. The issue stemmed from a caching issue in developer.twitter.com. When developers visited this website, it temporarily stored information about their applications in the browser s cache on the local computer. Twitter has fixed the bug by changing the caching instructions it sends to the browser, barring it from storing information about users apps or accounts. A Twitter spokesperson sought to downplay the issue and said there is currently no evidence that developer app keys and tokens were compromised.
Source: https://threatpost.com/twitter-bug-api-keys-tokens/159591/