From 59a19551fe49a8ea6c2dc35acdf41653c56cfad4 Mon Sep 17 00:00:00 2001
From: "Bastian (BaM)" <git@noxware.de>
Date: Sun, 14 Sep 2025 12:47:44 +0200
Subject: [PATCH] Unset SSH environment variables after key file creation for
 enhanced security

---
 scripts/auto-boot-ollama-host.lua | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/scripts/auto-boot-ollama-host.lua b/scripts/auto-boot-ollama-host.lua
index b53c72d..686b97c 100644
--- a/scripts/auto-boot-ollama-host.lua
+++ b/scripts/auto-boot-ollama-host.lua
@@ -107,6 +107,10 @@ local function createSSHKeyFilesFromEnv()
   pub_fh:close()
   os.execute(("chmod 644 %q"):format(SSH_IDENTITY_FILE .. ".pub"))
   log("Wrote SSH public key to " .. SSH_IDENTITY_FILE .. ".pub")
+
+  -- Unset the env vars for security
+  os.setenv("SSH_PRIVATE_KEY", "")
+  os.setenv("SSH_PUBLIC_KEY", "")
 end
 
 local function main()