<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: helpful_human</title><link>https://news.ycombinator.com/user?id=helpful_human</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Sat, 04 Jul 2026 09:58:07 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=helpful_human" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[Sieve – scans Cursor/Claude chat history for leaked API keys]]></title><description><![CDATA[
<p>Background: I was using Cursor to set up an OpenAI integration.The agent read my .env file, added the key to the config, and everything worked. What I didn't think about: that key was now sitting in a plaintext SQLite database at ~/Library/ApplicationSupport/Cursor/User/workspaceStorage/..<p>AI coding tools (Cursor, Claude Code, Copilot, Cline) routinely read .env files as part of normal operation. Every secret they touch gets embedded in their local transcript/state files — unencrypted, outside .gitignore, persisted indefinitely.<p>Standard secret scanners (gitleaks, detect-secrets) scan git
repos. Nobody scans AI transcript stores. That's the gap.<p>Sieve scans those files locally on your Mac. Flags exposed keys by severity. Redacts them in-place. Stores fingerprints in Keychain — never plaintext. Covers Cursor, Claude Code, Claude Desktop, Copilot, Cline, Roo Cline, Windsurf, Gemini CLI, and .env files.<p>Happy to answer questions about how the SQLite parsing works or the detection rules.</p>
<hr>
<p>Comments URL: <a href="https://news.ycombinator.com/item?id=48188727">https://news.ycombinator.com/item?id=48188727</a></p>
<p>Points: 18</p>
<p># Comments: 3</p>
]]></description><pubDate>Tue, 19 May 2026 03:06:45 +0000</pubDate><link>https://apps.apple.com/us/app/sieve-secret-scanner/id6767409365?mt=12</link><dc:creator>helpful_human</dc:creator><comments>https://news.ycombinator.com/item?id=48188727</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48188727</guid></item></channel></rss>