Stats
Actions
Tags
'%20stop-opacity%3D'0.16'%2F%3E%3Cstop%20offset%3D'1'%20stop-color%3D'rgb(200%2C90%2C60)'%20stop-opacity%3D'0.03'%2F%3E%3C%2FlinearGradient%3E%3C%2Fdefs%3E%3Crect%20width%3D'320'%20height%3D'200'%20fill%3D'url(%23g)'%2F%3E%3Ccircle%20cx%3D'250'%20cy%3D'56'%20r%3D'92'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.06'%2F%3E%3Ccircle%20cx%3D'64'%20cy%3D'172'%20r%3D'58'%20fill%3D'rgb(200%2C90%2C60)'%20fill-opacity%3D'0.05'%2F%3E%3C%2Fsvg%3E)
From ralph-town
Daytona sandbox security. Use for token handling, credential security, full paths in SSH.
How this skill is triggered — by the user, by Claude, or both
Slash command
/ralph-town:sandbox-securityThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
SSH sessions have broken PATH. ALWAYS use full paths:
SSH sessions have broken PATH. ALWAYS use full paths:
| Tool | Path |
|---|---|
| git | /usr/bin/git |
| gh | /usr/bin/gh |
| bun | /root/.bun/bin/bun |
| ls/cat/echo | /bin/ls, /bin/cat, /bin/echo |
NEVER embed tokens in URLs - they leak to process list, logs, errors.
# BAD - token visible in ps, logs, error messages
/usr/bin/git clone https://[email protected]/owner/repo.git
# GOOD - use credential helper
/usr/bin/git config --global credential.helper store
/bin/echo "https://oauth2:[email protected]" > ~/.git-credentials
/bin/chmod 600 ~/.git-credentials
/usr/bin/git clone https://github.com/owner/repo.git
Env vars via --env are visible to ALL processes in sandbox:
env command lists everything/proc/*/environ exposes all process env vars$GH_TOKENMitigations:
Team-lead configures credentials BEFORE spawning teammate:
# $GH_TOKEN expands LOCALLY (double quotes!)
ssh <token>@ssh.app.daytona.io "
/usr/bin/git config --global credential.helper store &&
/bin/echo 'https://oauth2:[email protected]' > ~/.git-credentials &&
/bin/chmod 600 ~/.git-credentials
"
npx claudepluginhub spences10/ralph-town --plugin ralph-townProvides secure environment variable management to prevent secrets exposure in Claude sessions, terminals, logs, or git commits.
Enables secure execution of untrusted Python/Node.js code, git operations, and scripts in persistent Linux containers on Cloudflare edge using Workers SDK.
Explains why environment variables are unsafe for secrets and how to replace them with mounted files or vaults.