Comment by jjmaxwell4
3 days ago
I know that Cursor and the related IDEs touch millions of secrets per day. Issues like this are going to continue to be pretty common.
3 days ago
I know that Cursor and the related IDEs touch millions of secrets per day. Issues like this are going to continue to be pretty common.
If the secrets are in a .env file and you have them in your .gitignore they don't, as you should.
did you miss the part where the agent immediately went around it?
the .gitignore applies to the agent's own "read file" tool. not allowed? it will just run "cat .env" and be happy