From 7e2154ae72ab0900b829cd42c419d168e7b65a31 Mon Sep 17 00:00:00 2001
From: Harshal Patil <12152047+harche@users.noreply.github.com>
Date: Fri, 27 Feb 2026 15:49:26 -0500
Subject: [PATCH 1/2] chore: add changeset for sandbox env var leak prevention

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .changeset/wide-flat-new.md | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 .changeset/wide-flat-new.md

diff --git a/.changeset/wide-flat-new.md b/.changeset/wide-flat-new.md
new file mode 100644
index 0000000..afb8868
--- /dev/null
+++ b/.changeset/wide-flat-new.md
@@ -0,0 +1,5 @@
+---
+"@prodisco/sandbox-server": patch
+---
+
+Prevent environment variable leaks from sandbox execution. Sandbox code now gets a frozen empty process.env instead of the host's real environment variables. Added defense-in-depth output filter that blocks execution if sensitive env var values appear in output.

From a5ab5da828c4d08114704a4ae2368d938f073b4f Mon Sep 17 00:00:00 2001
From: Harshal Patil <12152047+harche@users.noreply.github.com>
Date: Fri, 27 Feb 2026 15:50:48 -0500
Subject: [PATCH 2/2] chore: include mcp-server in changeset for sandbox-server
 dep bump

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .changeset/wide-flat-new.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.changeset/wide-flat-new.md b/.changeset/wide-flat-new.md
index afb8868..8ad8de8 100644
--- a/.changeset/wide-flat-new.md
+++ b/.changeset/wide-flat-new.md
@@ -1,5 +1,6 @@
 ---
 "@prodisco/sandbox-server": patch
+"@prodisco/mcp-server": patch
 ---
 
 Prevent environment variable leaks from sandbox execution. Sandbox code now gets a frozen empty process.env instead of the host's real environment variables. Added defense-in-depth output filter that blocks execution if sensitive env var values appear in output.