If you’re letting Claude code just handle secrets like this you’re already fucked from a security standpoint so I don’t really see the big deal here
Today it was the Vercel plugin but if you’re letting an LLM agent with access to bash and the internet read truly sensitive information then you’re already compromised
I can confirm every action of the agent. So I do have some control over it sending data away vs a plugin that sends everthing by default.
But otherwise yes, I have to trust Antrophic.