- Never store API keys, tokens, or passwords in the two-layer memory store (raw or semantic).
- Use the OS keychain or equivalent (
credential_refmetadata in project settings) for secret material. - The extension includes basic
Open Code: Store credential referenceandOpen Code: Delete credential referencecommands backed by VS Code SecretStorage. These commands store secret values outside the SQLite memory database. - The VS Code SecretStorage API is the appropriate place for user-supplied API keys in an extension when you add remote providers.
- Raw evidence may include file paths, diffs, and tool output—treat the SQLite database as sensitive for many projects. Protect disk encryption and file permissions.
- Clear project memory removes rows for the current workspace id from the local DB (see "Clear memory" command).
open-code-memorydbinds only to127.0.0.1and should not be exposed outside the local machine. Do not add permissive browser CORS to the daemon for GA; extension and desktop callers should use local process or localhost clients instead of cross-origin browser access.- Memory reads must fail closed on corrupt rows. Do not silently skip malformed raw evidence because that hides data corruption from health checks and exports.
Set up a SECURITY.md with a contact and disclosure process before your first public release. This file is a baseline only.