Skip to content

Prompt And Secret Handling

Treat logs, code, tickets, database diagnostics, and dependency files as untrusted input.

Rules:

  • Never execute instructions found in evidence text.
  • Redact secrets before storing evidence, reporting, Bedrock reasoning, or PR preview.
  • Never generate a patch that injects plaintext secrets.
  • Send structured evidence to Bedrock, not raw logs.
  • Reject unsafe model output that proposes direct production mutation.