GET /instruments Endpoint Unprotected: Authorization Header Not Required

[bitjunk]

Problem Statement:

curl "https://api.kite.trade/instruments" functions correctly even without the Authorization header. It appears that this oversight occurred despite the documentation indicating that the Authorization header is required. Assuming this was not an intentional omission, please notify all upstream clients, as their code might break once the fix is implemented. Also, might be a good idea to check all other endpoints too.