Maybe you should fix your logging to not output secrets in plaintext? Every single modern logging utility has this ability.
so what happens if you are running an agent locally and it helpfully tries to write a script that prints the environment variables, for debugging purposes?
You run your agent in a container and you only give it access to agent-specific secrets that can be rotated easily.
so what happens if you are running an agent locally and it helpfully tries to write a script that prints the environment variables, for debugging purposes?
You run your agent in a container and you only give it access to agent-specific secrets that can be rotated easily.