Fromager passes the full parent environment to every subprocess. This leaks sensitive variables (credentials, CI tokens, cloud keys) into build scripts and PEP 517 hooks. Add configuration to control which variables from os.environ are inherited by subprocesses. Variables injected by fromager itself (extra_environ, build_environment, package-level env) are not subject to filtering.
Fromager passes the full parent environment to every subprocess. This leaks sensitive variables (credentials, CI tokens, cloud keys) into build scripts and PEP 517 hooks. Add configuration to control which variables from
os.environare inherited by subprocesses. Variables injected by fromager itself (extra_environ,build_environment, package-levelenv) are not subject to filtering.