- Never commit real API keys, tokens, cookies, or browser session credentials.
- Validate untrusted input before browser automation, code execution, or filesystem access.
- Do not log secrets or raw provider credentials.
- Keep
.envlocal and use.env.examplefor safe placeholders. - Treat generated code, scraped content, and browser results as untrusted data.
- Prefer least-privilege provider keys for local development and CI.
This package is CLI/library-first and does not own end-user authentication. Provider authentication is environment-variable based:
HUGGINGFACE_TOKENOPENAI_API_KEYANTHROPIC_API_KEYSERPAPI_API_KEYOPENROUTER_API_KEYBROWSER_USE_API_KEY
Secrets should be loaded at runtime through settings and never passed through README examples as real values.
| Class | Examples | Handling |
|---|---|---|
| Public | README text, docs, public search snippets | Safe to store in repo |
| Internal | Plans, architecture notes, local logs | Review before publishing |
| User-provided | Prompts, URLs, uploaded data, scraped pages | Avoid unnecessary persistence |
| Secret | API keys, tokens, cookies, browser sessions | Environment/secret manager only |
agentic_internet/tools/code_execution.pyagentic_internet/tools/browser_use.pyagentic_internet/tools/mcp_integration.py- Provider/model routing in orchestration modules
Changes in these areas require focused tests and explicit review of side effects.