DevRel at Infisical here! It always scares me when Claude Code or another agent starts reading through my repo and pulls in the .env file. I’ve even seen it print the contents directly to the terminal. .gitignore doesn’t do anything here. Agents don’t use git. I made a quick video on how we solved this at Infisical (open source secrets manager). No more secrets in files on disk. https://www.youtube.com/watch?v=zYCeELjcgQ4 submitted by /u/Low_Engineering1740
Originally posted by u/Low_Engineering1740 on r/ClaudeCode
You must log in or # to comment.