mirror of
https://github.com/claude-code-best/claude-code.git
synced 2026-06-17 05:45:51 +00:00
b8d86e5279
AES-256-GCM 加密 vault,支持 OS keychain 和加密文件回退, scrypt KDF 密钥派生,64KB secret 上限。 Co-Authored-By: glm-5-turbo <zai-org@claude-code-best.win>
15 lines
517 B
TypeScript
15 lines
517 B
TypeScript
/**
|
|
* Sanitize an ID for use in error messages.
|
|
*
|
|
* Security invariant: full IDs (vault_id, credential_id, agent_id, etc.) must
|
|
* not appear in error messages as they may be leaked into logs, bug reports,
|
|
* or user-facing text. Expose only the first 8 characters.
|
|
*
|
|
* H3: single source of truth extracted from the 4 P2 API client files
|
|
* (vaultsApi, agentsApi, memoryStoresApi, skillsApi).
|
|
*/
|
|
export function sanitizeId(id: string): string {
|
|
if (id.length <= 8) return id
|
|
return `${id.slice(0, 8)}…`
|
|
}
|