You can not simply publicly access private secure links, can you?

i've spent a good amount of time avoiding creating these unauthenticated links for many of these reasons laid out in the article.

it was nice to have a coherent outline steps for why these links may not be what you want to create.

with that said, there is a have your cake and eat it too with a few small investments like auto-expiration, rate limiting and more (assuming you don't end up sacrificing the main UX goals entirely)

Popular malware/url analysis tools like urlscan.io, Hybrid Analysis and Cloudflare radar url scanner store a large number of links for intelligence gathering and sharing. It is however not so widely known that these services also store a large amount of private and sensitive links, thanks to: Sensitive links mistakenly submitted by users for scanning unaware that these are public information Misconfigured scanners and extensions submitting private links scanned from emails as public data