Security¶
Isolinear is designed so that secret material is exposed as little as possible and is never written to disk.
Security model¶
- Values are never persisted. Secret values are read on demand via the Databricks SDK and held only in memory for the duration of the session. They are never written to disk or to a cache.
- Reveal is lazy and short-lived. Values are not bulk-pulled at startup — a value leaves Databricks only when you explicitly reveal or copy it — and a revealed value hides itself after 30 seconds.
- You can purge on demand. The Forget revealed values command (in the palette, Ctrl+P) drops every cached value from memory immediately.
- Exports never touch disk. The .env export commands write to the clipboard only; the with-values variant sits behind an explicit confirm.
- Read-only mode.
isolinear --read-onlydisables every mutation — create, edit, delete, and ACL changes — for safely browsing production. - Saved profiles store no secrets. A saved profile writes only the
hostandauth_type = external-browserto~/.databrickscfg. Authentication is delegated to the Databricks SDK's unified auth / OAuth token cache — Isolinear never handles or stores a token itself. - The SDK boundary is isolated. Only the
infrastructure/layer touches the Databricks SDK or the network. The rest of the application — including the entire UI — has no path to the network.
Clipboard
Copying a value places it on your system clipboard. If you share your machine, clear the clipboard after you're done. (Isolinear deliberately does not auto-clear the clipboard: it cannot read the clipboard back, so a timed clear could clobber something else you copied in the meantime.)
Reporting a vulnerability¶
Please report security issues privately — not in a public issue.
- Open a GitHub Security Advisory, or
- Email misja@prorexconsultancy.nl.
Do not file a public issue
Public issues are visible to everyone and can expose users before a fix is available. Always use one of the private channels above.