Whitelist ENV variables that get passed to the enclave (#5)

vana-com · Sep 10, 2024 · cf4b5f7 · cf4b5f7
1 parent e4abc53
commit cf4b5f7
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/my-proof.manifest.template b/my-proof.manifest.template
@@ -10,6 +10,9 @@ fs.mounts = [
   { path = "/output", uri = "file:/output" },
 ]
 
+# Whitelist ENV variables that get passed to the enclave
+loader.env.USER_EMAIL = { passthrough = true }
+
 # Gramine gives a warning that allowed_files is not safe in production, but it
 # should generally be fine for our use case which inherently assumes that input
 # files are untrusted until proven otherwise.