Stop Telling Claude to Read Your .env File
The advice spreading across AI communities — 'just create a .env file and have Claude read it' — is wrong, and here's why it matters.
Read post →How to Keep API Keys Secure When Using Claude Code
Claude Code reads your project files, including .env. Here's the right way to handle API keys so they never enter the model's context window.
Read post →How to Store Secrets for Claude Code (Without Putting Them in .env)
The standard .env approach exposes your API keys to Claude's context window. Here's the correct way to store and use secrets with Claude Code.
Read post →MCP Secret Manager — How OpaqueVault Works
OpaqueVault is the only MCP-native secret manager built for AI coding agents. Here's how it works, why the architecture matters, and how to set it up in five minutes.
Read post →MCP Server Secrets Management — The Complete Guide
How to manage credentials across MCP servers without exposing them to the AI. Architecture, patterns, and a reference implementation with OpaqueVault.
Read post →Zero-Knowledge Secret Manager — What It Is and Why It Matters for AI Agents
A zero-knowledge secret manager means the server cannot decrypt your secrets. Here's why that architecture matters — especially when AI coding agents are in the loop.
Read post →24,000 secrets found in MCP config files — what it means and how to fix it
Researchers found 24,008 live API keys and credentials inside Claude Desktop MCP configuration files. Here's what went wrong and how zero-knowledge vaults change the equation.
Read post →HCP Vault Secrets is being shut down. Here's where to migrate before July 2026.
HashiCorp confirmed HCP Vault Secrets reaches end-of-life on July 1, 2026. If you're using it today, here's what you need to know and where to move your secrets.
Read post →Why your AI coding assistant is a secret leak waiting to happen
Claude Code, Cursor, and GitHub Copilot dramatically accelerate development — and, if misconfigured, dramatically accelerate credential exposure. Here's the structural problem and how to fix it.
Read post →