colonelpanic/dotfiles
1
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Clarify credential handling in AGENTS instructions

Browse Source
This commit is contained in:
Ivan Malison
2026-02-18 22:08:18 -08:00
committed by Kat Huang
parent 9dd86cfac9
commit acaa644e25
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
dotfiles/agents/AGENTS.md
View File

@@ -50,6 +50,8 @@
- When a credential (password, API key, token, etc.) is needed to complete a task, use the `pass` utility to retrieve it. - When a credential (password, API key, token, etc.) is needed to complete a task, use the `pass` utility to retrieve it.
- The pass password store lives at `~/.password-store/`. - The pass password store lives at `~/.password-store/`.
- Use `pass show <entry>` to retrieve a secret, or `pass find <search-term>` to locate entries. - Use `pass show <entry>` to retrieve a secret, or `pass find <search-term>` to locate entries.
- Never write passwords or other credentials directly into version-controlled files in any repo (for example `dotfiles/claude/settings.local.json`).
- Provide credentials to tools/config at runtime via environment variables or inline `pass` usage instead of committing them.
- Never hardcode credentials or store them in plain text files. - Never hardcode credentials or store them in plain text files.
## Project links (local symlink index) ## Project links (local symlink index)