I keep them in env variables rather than files. Not 100% secure - technically Cl... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		victorbuilds 23 days ago \| parent \| context \| favorite \| on: Google Antigravity just deleted the contents of wh... I keep them in env variables rather than files. Not 100% secure - technically Claude Code could still run printenv - but it's never tried. The main thing is it won't stumble into them while reading config files or grepping around.

63stack 23 days ago [–]

A process does not need to run printenv to see environment variables, they are literally part of the environment it runs in.

dist-epoch 23 days ago | [–]

The LLM doesn't have direct access to the process env unless the harness forwards it (and it doesn't)

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact