Y
Hacker News
new
|
ask
|
show
|
jobs
by
skybrian
57 days ago
Instead of putting secrets in the same VM as the agent where they could be exfiltrated, they should be in an http proxy outside the sandbox. [1][2]
[1]
https://fly.io/blog/tokenized-tokens/
[2]
https://blog.exe.dev/http-proxy-secrets