Y
Hacker News
new
|
ask
|
show
|
jobs
by
devendra116
59 days ago
if a agent has the keys in the same process, it can easily extract them
1 comments
theozero
57 days ago
Totally - the only completely safe way is to inject keys in a proxy and keep them out of the process. But getting them totally out of plaintext is a great first step, both to keep it from AI and malicious scripts that are looking for keys.
link