[Bug] API key exposure risk in environment variable suggestions

Resolved 💬 3 comments Opened Mar 30, 2026 by kgmodi Closed May 2, 2026

Bug Description
"Once you have the key, just let me know and I'll set it up in the project as an env var (NEXT_PUBLIC_GOOGLE_MAPS_API_KEY). I'll scaffold everything with a
placeholder in the meantime."

This suggestion compromises the API key because the key will be logged to anthropic servers. please do not suggest this.

Environment Info

  • Platform: darwin
  • Terminal: Apple_Terminal
  • Version: 2.1.87
  • Feedback ID: d09907ed-f152-4957-bb26-4039287c4d97

Errors

[{"error":"Error: NON-FATAL: Lock acquisition failed for /Users/kunal/.local/share/claude/versions/2.1.87 (expected in multi-process scenarios)\n    at _p_ (/$bunfs/root/src/entrypoints/cli.js:2851:2138)\n    at Vn6 (/$bunfs/root/src/entrypoints/cli.js:2851:1218)\n    at processTicksAndRejections (native:7:39)","timestamp":"2026-03-30T00:43:41.608Z"},{"error":"Error: Request was aborted.\n    at makeRequest (/$bunfs/root/src/entrypoints/cli.js:50:3940)\n    at processTicksAndRejections (native:7:39)","timestamp":"2026-03-30T00:52:32.772Z"},{"error":"Error: Request was aborted.\n    at makeRequest (/$bunfs/root/src/entrypoints/cli.js:50:3940)\n    at processTicksAndRejections (native:7:39)","timestamp":"2026-03-30T00:53:14.832Z"}]

View original on GitHub ↗

This issue has 3 comments on GitHub. Read the full discussion on GitHub ↗