| ▲ | radku 4 hours ago | |
Nice work shipping this. Disclosure: author of a related tool here. I have create agent-vault-proxy for a very similar reason. It also can help keep credentials out of the agent process. The agent gets a placeholder, the proxy swaps in the real secret in transit. I read them as complementary: action firewall in front, credential broker behind. https://github.com/inflightsec/agent-vault-proxy | ||
| ▲ | undefined_void 4 hours ago | parent [-] | |
That’s great! IIUC Agent vault is an HTTPS proxy whereas Clawpatrol is a WG/Tailscale exit node so it can handle other protocols like Postgres and SSH without processes co-operating via HTTP_PROXY | ||