Ask HN: Best practice securing secrets on local machines working with agents?

6•xinbenlv•8h ago

When building with autonomous / semi-autonomous agents, they often need broad local access: env vars, files, CLIs, browsers, API keys, etc. This makes the usual assumption — “the local machine is safe and untampered” — feel shaky.

We already use password managers, OAuth, scoped keys, and sandboxing, but agents introduce new risks: prompt injection, tool misuse, unexpected action chains, and secrets leaking via logs or model context. Giving agents enough permission to be useful seems at odds with least-privilege.

I haven’t seen much discussion on this. How are people thinking about secret management and trust boundaries on dev machines in the agent era? What patterns actually work in practice?

Comments

deflator•56m ago

I've been having success using Doppler for secret storage. Takes it off the filesystem.

xinbenlv•19m ago

My question is not about on or off storage, is more about when you give agent access, it assume the environment agent runs is safe

algebra-pretext•53m ago

I’m not too familiar with the space, but a friend of mine works at Descope[0] where they offer IAM solutions for agents.

[0] https://www.descope.com/

xinbenlv•20m ago

is the permission device+client based or role based?

nojs•48m ago

Run the agent in a sandbox without access to production secrets.

xinbenlv•19m ago

What if you simply need to give them access. E.g if you want them to do code review you have to at least give them code repo read access. But you don't know if the environment where agent runs will be compromised

CriptoSeguro25•28m ago

TBH, the best pattern I've seen is just nuking the secrets at the input level. Run a local regex watcher in-memory that flags anything looking like a PK or seed phrase before it even hits the agent's context window. Keeps it off the network stack entirely

xinbenlv•21m ago

Any prompt injection attack could by pass this by simply do a base64 or any encoding, I guess?

Ask HN: Is Claude Down for You?

Ask HN: Best practice securing secrets on local machines working with agents?

Ask HN: What's the best virtual Linux desktop experience on macOS for devs?

Ask HN: Claude Down?

Ask HN: Modern test automation software (Python/Go/TS)?

Ask HN: What is your opinion on non-mainstream mobile OS options (e.g. /e/OS)?

Ask HN: Any good ressources facility location planning using GIS?

Ask HN: How do you verify cron jobs did what they were supposed to?

Ask HN: Industrial smart glasses with online / offline capabilities?

Ask HN: Anyone doing production image editing with image models? How?

Ask HN: Is there any good open source model with reliable agentic capabilities?

Tell HN: Drowning in information but still missing everything

Ask HN: Unusual Network Filter

Ask HN: How do you authorize AI agent actions in production?

Ask HN: Do you have any evidence that agentic coding works?

Tell HN: 2 years building a kids audio app as a solo dev – lessons learned

Ask HN: Why are so many rolling out their own AI/LLM agent sandboxing solution?

Ask HN: Thoughts on monitoring multi-chain staking and alerts with KoinyxBot

Ask HN: I'm sure more than just Microsoft is down rn

Ask HN: GitHub "files changed" tab change?

Ask HN: COBOL devs, how are AI coding affecting your work?

Ask HN: Does "Zapier for payment automation" exist?

Ask HN: Revive a mostly dead Discord server

Tell HN: Claude session limits getting small

Ask HN: Why does Google Maps still use mercator projection?

Ask HN: Is GitHub Down?

Tell HN: Avoid Cerebras if you are a founder

Ask HN: How locked down are your work machines?

Ask HN: Do you have side income as a software engineer?

Ask HN: Which common map projections make Greenland look smaller?

Ask HN: Best practice securing secrets on local machines working with agents?

Comments

Ask HN: Is Claude Down for You?

Ask HN: Best practice securing secrets on local machines working with agents?

Ask HN: What's the best virtual Linux desktop experience on macOS for devs?

Ask HN: Claude Down?

Ask HN: Modern test automation software (Python/Go/TS)?

Ask HN: What is your opinion on non-mainstream mobile OS options (e.g. /e/OS)?

Ask HN: Any good ressources facility location planning using GIS?

Ask HN: How do you verify cron jobs did what they were supposed to?

Ask HN: Industrial smart glasses with online / offline capabilities?

Ask HN: Anyone doing production image editing with image models? How?

Ask HN: Is there any good open source model with reliable agentic capabilities?

Tell HN: Drowning in information but still missing everything

Ask HN: Unusual Network Filter

Ask HN: How do you authorize AI agent actions in production?

Ask HN: Do you have any evidence that agentic coding works?

Tell HN: 2 years building a kids audio app as a solo dev – lessons learned

Ask HN: Why are so many rolling out their own AI/LLM agent sandboxing solution?

Ask HN: Thoughts on monitoring multi-chain staking and alerts with KoinyxBot

Ask HN: I'm sure more than just Microsoft is down rn

Ask HN: GitHub "files changed" tab change?

Ask HN: COBOL devs, how are AI coding affecting your work?

Ask HN: Does "Zapier for payment automation" exist?

Ask HN: Revive a mostly dead Discord server

Tell HN: Claude session limits getting small

Ask HN: Why does Google Maps still use mercator projection?

Ask HN: Is GitHub Down?

Tell HN: Avoid Cerebras if you are a founder

Ask HN: How locked down are your work machines?

Ask HN: Do you have side income as a software engineer?

Ask HN: Which common map projections make Greenland look smaller?