Re: SDI: Secure Semantic Data Injection

X-seq: zsh-users 30668

From: Jessica Mulein <jessica@xxxxxxxxxxxxxxxxxxx>

To: "zsh-users@xxxxxxx" <zsh-users@xxxxxxx>

Subject: Re: SDI: Secure Semantic Data Injection

Date: Sun, 17 May 2026 16:45:08 -0700

Arc-authentication-results: i=1; mx.google.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=JZYao49+PLW8lUhcDJ76s+r3ZqhohGRB+cj85lMCxFM=; fh=nDMzGVm/6HsVcUjFw4xtNc2BjkZGcQK4Bzb7T/VlJlE=; b=Djg8vRyFxKEVns+S9pGz9T2ou2VepEc4dbYdz8Ko9dlMD78uNrFoDFSmtoFYQeWL1/ LJz/4GZvl6ODckcScNILIASo9r25v4KnkzlFQ3NVa9PzwylGmhAyu0oTjIa3AgWlyj4o QSlQ0dETlYGYRoLOYnjS1H91NN8jjATYStZ5NPjFea+Rts9GnvMX0ze+GX7WIVu+E2td KjmLOiu7aRpWz1ovG52UISmIpWqw1c44yYTHX+py1mek+2/mFWiS4TtV9ZFSDIIGt27V LHcvgKiVVyV7LsBCYgQdZsUghedNoE9hoaHyCca4ApkIllBcdmieWcR4F8xhrg9rvBrQ mHMQ==; darn=zsh.org

Arc-seal: i=1; a=rsa-sha256; t=1779061520; cv=none; d=google.com; s=arc-20240605; b=E9M/fgl3Gb7z45DdZ66ecsPiT7M7o0HSwPHMfgjtmmhSZWlR+VcRurvtAWn9o9l12Z XgKnuHggqFAIeva/PGVvy58RrQrnp/uNjBDoDZc5Iz7OMhveCHYaHhDGgsGlRFyxaAa/ LU+t3qoizIoqaEt0SZvKLTBJC/nU5R9IsJDPsmaHXkN+BtV9jBY22d+s7lflwECm9Fk0 as3ISoqJo8wZ63LDBfkE0wLCH7DaQskbcTn+nb7moX11KTKZugmn1mLobyZGhzwcXl1V /l3BH6om+q41Xnv/iW7fDo8qYUKlTbN36UzL4G3upAwnJCqqmaxTxCjPyh2wVRlbBMo4 RoUw==

Archived-at: <https://zsh.org/users/30668>

In-reply-to: <ago58SUfy7JQ6Lr3@localhost>

List-id: <zsh-users.zsh.org>

References: <CH3PR20MB6243CF33C4C80323E534808CF6022@CH3PR20MB6243.namprd20.prod.outlook.com> <CH3PR20MB62431346F97C1E1BB2F403E4F6022@CH3PR20MB6243.namprd20.prod.outlook.com> <ago58SUfy7JQ6Lr3@localhost>

Btw this is intended for ephemeral dev passwords. I built it for that.

On Sun, May 17, 2026, 2:55 PM Dominik Vogt <dominik.vogt@xxxxxx> wrote:

On Sun, May 17, 2026 at 08:41:01PM +0000, Jessica Mulein wrote:
> I developed a thing called ?SDI? or "Secure Semantic Data
> Injection? and added it to BSH.

The example command from the web site

$ printf '{"username":"alice","password":"s3cr3t","ttl":300}' | ...

puts a plain text copy of the user's password in the zsh history
file which is possibly world readable.

Ciao

Dominik ^_^ ^_^

--

Dominik Vogt

Reverse Date

Date

Thread

Author