From 1ed00b3abbe7757f3229670bfa520ec5f97b029c Mon Sep 17 00:00:00 2001 From: David Karlsson <35727626+dvdksn@users.noreply.github.com> Date: Wed, 1 Jul 2026 09:43:24 +0200 Subject: [PATCH 1/2] docs: sync built-in credential services with sbx secret set Update the built-in services table to match the services `sbx secret set` recognizes and the domains the proxy injects for. - Add cursor, droid, and openrouter services - Fix nebius domain (api.studio.nebius.ai -> api.studio.nebius.com) - List the full set of API domains each service authenticates for, taken from the agent network.serviceDomains blocks and the proxy service detector defaults in docker/sandboxes bedrock is intentionally omitted; it is contributed only by the flag-gated claude-bedrock agent and is not yet GA. Co-Authored-By: Claude Opus 4.8 (1M context) --- .../ai/sandboxes/security/credentials.md | 25 +++++++++++-------- 1 file changed, 14 insertions(+), 11 deletions(-) diff --git a/content/manuals/ai/sandboxes/security/credentials.md b/content/manuals/ai/sandboxes/security/credentials.md index 68f00d2abc7e..2d2c1888cc14 100644 --- a/content/manuals/ai/sandboxes/security/credentials.md +++ b/content/manuals/ai/sandboxes/security/credentials.md @@ -122,17 +122,20 @@ $ echo "$ANTHROPIC_API_KEY" | sbx secret set -g anthropic Each built-in service name maps to a set of environment variables the proxy checks and the API domains it authenticates requests to: -| Service | Environment variables | API domains | -| ----------- | ---------------------------------- | ----------------------------------- | -| `anthropic` | `ANTHROPIC_API_KEY` | `api.anthropic.com` | -| `aws` | `AWS_ACCESS_KEY_ID` | AWS Bedrock endpoints | -| `github` | `GH_TOKEN`, `GITHUB_TOKEN` | `api.github.com`, `github.com` | -| `google` | `GEMINI_API_KEY`, `GOOGLE_API_KEY` | `generativelanguage.googleapis.com` | -| `groq` | `GROQ_API_KEY` | `api.groq.com` | -| `mistral` | `MISTRAL_API_KEY` | `api.mistral.ai` | -| `nebius` | `NEBIUS_API_KEY` | `api.studio.nebius.ai` | -| `openai` | `OPENAI_API_KEY` | `api.openai.com` | -| `xai` | `XAI_API_KEY` | `api.x.ai` | +| Service | Environment variables | API domains | +| ------------ | ---------------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | +| `anthropic` | `ANTHROPIC_API_KEY` | `api.anthropic.com`, `console.anthropic.com`, `claude.ai`, `mcp-proxy.anthropic.com` | +| `aws` | `AWS_ACCESS_KEY_ID` | `bedrock-runtime.*.amazonaws.com`, `bedrock.*.amazonaws.com` | +| `cursor` | `CURSOR_API_KEY` | `api2.cursor.sh`, `api3.cursor.sh`, `repo42.cursor.sh`, `cursor.com` | +| `droid` | `FACTORY_API_KEY` | `api.factory.ai`, `app.factory.ai`, `relay.factory.ai` | +| `github` | `GH_TOKEN`, `GITHUB_TOKEN` | `api.github.com`, `github.com`, `raw.githubusercontent.com`, `gist.github.com`, `copilot.github.com`, `api.githubcopilot.com` | +| `google` | `GEMINI_API_KEY`, `GOOGLE_API_KEY` | `generativelanguage.googleapis.com`, `oauth2.googleapis.com`, `aiplatform.googleapis.com`, `vertexai.googleapis.com` | +| `groq` | `GROQ_API_KEY` | `api.groq.com` | +| `mistral` | `MISTRAL_API_KEY` | `api.mistral.ai` | +| `nebius` | `NEBIUS_API_KEY` | `api.studio.nebius.com`, `api.tokenfactory.nebius.com` | +| `openai` | `OPENAI_API_KEY` | `api.openai.com`, `openai.com`, `chatgpt.com`, `www.chatgpt.com` | +| `openrouter` | `OPENROUTER_API_KEY` | `openrouter.ai` | +| `xai` | `XAI_API_KEY` | `api.x.ai` | When you store a secret with `sbx secret set -g `, the proxy uses it the same way it would use the corresponding environment variable. You don't From c9688dae5cbe4ecc54f16dfac320ba1a3dc02f88 Mon Sep 17 00:00:00 2001 From: David Karlsson <35727626+dvdksn@users.noreply.github.com> Date: Wed, 1 Jul 2026 10:05:47 +0200 Subject: [PATCH 2/2] docs: drop the non-functional aws service from the credentials table The opencode aws credential service can't authenticate a Bedrock request (no SigV4 signing, no secret key) and is being removed at the source. Drop the corresponding row so the table only lists services that actually work. Co-Authored-By: Claude Opus 4.8 (1M context) --- content/manuals/ai/sandboxes/security/credentials.md | 1 - 1 file changed, 1 deletion(-) diff --git a/content/manuals/ai/sandboxes/security/credentials.md b/content/manuals/ai/sandboxes/security/credentials.md index 2d2c1888cc14..7c4723c3da26 100644 --- a/content/manuals/ai/sandboxes/security/credentials.md +++ b/content/manuals/ai/sandboxes/security/credentials.md @@ -125,7 +125,6 @@ checks and the API domains it authenticates requests to: | Service | Environment variables | API domains | | ------------ | ---------------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | | `anthropic` | `ANTHROPIC_API_KEY` | `api.anthropic.com`, `console.anthropic.com`, `claude.ai`, `mcp-proxy.anthropic.com` | -| `aws` | `AWS_ACCESS_KEY_ID` | `bedrock-runtime.*.amazonaws.com`, `bedrock.*.amazonaws.com` | | `cursor` | `CURSOR_API_KEY` | `api2.cursor.sh`, `api3.cursor.sh`, `repo42.cursor.sh`, `cursor.com` | | `droid` | `FACTORY_API_KEY` | `api.factory.ai`, `app.factory.ai`, `relay.factory.ai` | | `github` | `GH_TOKEN`, `GITHUB_TOKEN` | `api.github.com`, `github.com`, `raw.githubusercontent.com`, `gist.github.com`, `copilot.github.com`, `api.githubcopilot.com` |