Cole 1a07869329 security: sanitize env vars from agent Bash subprocesses (#171) ...

Use a PreToolUse SDK hook to prepend `unset ANTHROPIC_API_KEY
CLAUDE_CODE_OAUTH_TOKEN` to every Bash command Kit runs, preventing
secret leakage via env/printenv/echo/$PROC. Secrets are now passed
via stdin JSON instead of mounted env files, closing all known
exfiltration vectors.

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-13 22:33:39 +02:00

2.0 KiB

Raw Blame History

View Raw