HomeTutorials › Collaboration & Sharing
Collaboration & Sharing

Secret Redaction

#094 0:14 Part of the Rysh video series

Your secrets never leave your machine -- redaction happens before output is shared.

Secret Redaction — 0:14 walkthrough

What you'll see

  1. Launch rysh and echo API_KEY=sk-ant-secret-123456 to put a secret in the buffer.
  2. Double-Escape into rysh mode and run ##private pane print to show the raw buffer with the secret visible locally.
  3. ##public pane print shows the redacted version -- the same output the SharedOutputActor forwards upstream.
  4. ##share pane view; the SharedOutputActor redacts before output leaves the session, so the server never sees raw secrets.

Commands shown

rysh
echo API_KEY=sk-ant-secret-123456
##private pane print
##public pane print
##share pane view

Keys used

EnterEscape

Transcript

0:00Your secrets never leave your machine -- redaction happens before output is shared.

0:03Start rysh. Suppose your terminal output contains an API key or token -- exactly the thing you don't want to broadcast.

0:09Double-Escape into rysh mode. ##private pane print shows the raw buffer -- everything, secrets included, on your screen.

0:28When you share a pane, the SharedOutputActor redacts before output leaves the session, so the server never sees raw secrets.

0:38Redaction plus a command blocklist means collaboration without leaking credentials. Share with confidence.

Key takeaway
The SharedOutputActor redacts secrets before output leaves the local session -- ##public shows what gets shared, and a command blocklist guards control-mode input.