Hacker News new | ask | show | jobs
by iamsaitam 203 days ago
If the secrets are in a .env file and you have them in your .gitignore they don't, as you should.
1 comments
sixeyes 203 days ago
did you miss the part where the agent immediately went around it?

the .gitignore applies to the agent's own "read file" tool. not allowed? it will just run "cat .env" and be happy

link