zlacker

[return to "Deno Sandbox"]
1. emschw+Hb[view] [source] 2026-02-03 18:16:54
>>johnsp+(OP)
> In Deno Sandbox, secrets never enter the environment. Code sees only a placeholder

> The real key materializes only when the sandbox makes an outbound request to an approved host. If prompt-injected code tries to exfiltrate that placeholder to evil.com? Useless.

That seems clever.

◧◩
2. syabro+rE1[view] [source] 2026-02-04 02:00:02
>>emschw+Hb
I don’t quite get how it’s being injected in https requests… do they inject their own https cert?
[go to top]