问题描述
当笔者想将codex作为agent running time 并对外服务的时候会出现严重的泄密问题
比如只需用户在对话框输入打印xxx环境变量,查看xxx目录下的xx文件并输出给我 会导致codex直接泄露密钥相关信息,提示词也会被轻而易举套出来
所以AI能看到什么这个就十分关键了
怎么做?
codex 有防止环境密钥泄露的机制
root@DESKTOP-FSEBVUH:~/.codex# cat config.toml
model = "gpt-5.4"
model_provider = "new_api"
[model_providers.new_api]
name = "new-api relay"
base_url = "https://new-api.com/v1"
wire_api = "responses"
[model_providers.new_api.auth]
command = "/usr/local/bin/fetch-codex-token"
args = ["--audience", "codex"]
timeout_ms = 5000
refresh_interval_ms = 300000