Well claude code doesn't revoke the tokens at all! I can fish the endpoint out of my browser logs easily enough. But who on earth designs an API token with a fixed long-term expiry and no automated way to revoke it? What is going on over there?
@honnibal
-
Claude setup-token command lacks revocation API documentation
By
–
Claude code has this command, 'claude setup-token', that takes no arguments. It prints an oauth token with 1 year expiry to your terminal in coloured text. There is no command or publicly documented API to revoke this token, you can only do that from the web. Wtf?
-
Double Esc to Undo Context in Claude Code
By
–
Did anyone else not know about double esc to undo context in Claude Code?! When it messes up you can just roll back the context and code. This makes history shorter and I'm building a better feel for what sorts of instructions work well
-
Software Supply Chain Attacks: Prevention and Future Threats
By
–
(Re futuresearch.ai/blog/litellm-pypi-supply-chain-attack/ and other supply-chain attacks. There will be more) [Translated from EN to English]
-
Using Claude in special-purpose scripts with the -p flag
By
–
The -p part is so I can use Claude in special-purpose scripts like "add release notes to this release"
-
Claude Command Line Tool for Secure Workflow Automation
By
–
claude -p lets you execute Claude as a single command. This is nice for workflows that need intelligence for one step but need privileges for a different step. For instance you can get Claude to generate release notes or PR text, then deterministically make the PR or release, without giving Claude write permissions to your Github.
-
Web chat planning with Claude AI and coding assistants workflow
By
–
Planning in the web chat is great. The coding assistant is always way too impatient to get started. Getting a md out of http://
claude.ai and taking it to the agent works really well a lot of the time -
Integrating AI Tools into Your Workflow: Honest Challenges
By
–
The "how to put this in your workflow" bit is where it gets contentious. I don't have a clear answer (and if I did I'd have a tool I'd be trying to sell you, and at that point it'll be hard for you to trust me anyway!). To me the implication is you don't write things in the
-
Humility in AI: Avoiding Veneration Amid Rapid Change
By
–
Ehh I don't think that's the attitude to bring. We're all just one person each working with very new workflows, with the models changing underneath us. I'm sure he would tell you not to venerate.
-
Restricting Local Coding Agent Write Access to GitHub
By
–
How to restrict your local coding agent's write access to your GitHub: honnibal.dev/blog/locking-do…