Bitter Frontier
Founding member access recorded.
Checkout cancelled.

Finding · openhands

Security: Route ACP provider credentials via agent_context.secrets instead of acp_env

What Changed

Moved ACP agent provider credentials (API keys, base URLs) from deprecated acp_env channel to cipher-protected agent_context.secrets channel. User secrets and git provider tokens continue via agent_context.secrets. Provider credentials override same-named Secrets panel entries per prior priority logic.

Operator Implication

Operators running ACP agents must understand that provider credentials now route through cipher-protected secrets channel (more secure). Legacy acp_env channel is deprecated for credentials. Addresses security concerns from software-agent-sdk #3464 and agent-canvas #1039 regarding persistence safety.

Receipt

Finding metadata

Confidence
high
Actionability
test
Accessibility impact
none

Run: 2026-06-03-weekly-digest-2026-05-28_2026-06-03-frontier-v0

Finding ID: 2026-06-03-openhands-acp-creds-secrets

Accepted signals

Source links

Primary links, including exact changelog lines when available.

  1. OpenHands
    commitCommit ce271ad (2026-06-03T14:21:52Z): 'fix(acp): route provider creds via agent_context.secrets, not acp_env (#14620)' - Credentials handling refactoring with SDK gap-fill logic to prevent re-foldinggithub.com/OpenHands/OpenHands/commit/ce271ad