zlacker

[return to "Code and Let Live"]
1. dtkav+jo1[view] [source] 2026-01-10 05:57:47
>>usrme+(OP)
fly.io is doing really good work. I've super enjoyed building our product on their platform. I love fly-replay combined with super fast start-up.

I've been thinking a lot about how to run agents (and skills) securely while giving them a lot of powerful capabilities.

I recently used their macaroons library to turn arbitrary API keys (e.g. for stripe's API) into macaroons. I route requests for an upstream host (like stripe) through Envoy as a mitm proxy which injects the real creds after verifying the macaroon.

It is such a powerful pattern. I'm always worried about leaking sensitive keys through prompt injection attacks (or just sending them to anthropic), but in this model you can attenuate the keys (both capabilities & validity window) client side. The Envoy proxy lives inside my flycast network so it can't be accessed externally.

It would be so cool if fly built something like this into sprites.dev (though I can see how it would be spooky to have fly install their own certs for stripe, etc...)

◧◩
2. CGames+ZC3[view] [source] 2026-01-11 01:14:00
>>dtkav+jo1
Did you write up anything about this? Is this off the shelf behavior for Envoy or did you create this API yourself?
◧◩◪
3. dtkav+8yu[view] [source] 2026-01-19 05:10:34
>>CGames+ZC3
sorry for the delayed response. I ended posting on this [0] thread where they (Formal) are doing something similar.

Here's the repo [1]. I modified it a bit to post publicly and remove the details of my setup within my tailnet/flycast network.

[0] >>46605155

[1] https://github.com/dtkav/agent-creds

[go to top]