# Ad-hoc AGENT_BOM_* env vars referenced under src/agent_bom/ but not declared
# in src/agent_bom/config.py. Generated once as a baseline by
# scripts/generate_env_var_reference.py and trimmed by hand as vars are
# promoted into config.py. CI fails if a NEW env var appears in src/ that is
# not listed here AND not in config.py — promote it to config.py (preferred)
# or add it here with a one-line reason (above the entry).
#
# These are typically: secrets / OIDC / SAML / SCIM credentials, runtime
# feature flags read once at module import, deploy-only toggles, and
# integration-specific overrides that don't share the config.py shape.
#
# To add an entry: append the env-var name (one per line). Trailing inline
# `# reason` comments are stripped by the loader.

AGENT_BOM_AI_MODEL_ADVISORY_FEED
# CLI machine-readable envelope toggle; read by the entrypoint before config is loaded.
AGENT_BOM_AGENT_MODE
AGENT_BOM_ALERT_WEBHOOK
AGENT_BOM_ALLOW_PRIVATE_EGRESS_URLS
AGENT_BOM_ANALYTICS_BACKEND
AGENT_BOM_API_HOST
AGENT_BOM_API_KEY
AGENT_BOM_API_KEYS
AGENT_BOM_API_KEY_DEFAULT_OVERLAP_SECONDS
AGENT_BOM_API_KEY_DEFAULT_TTL_SECONDS
AGENT_BOM_API_KEY_ID
AGENT_BOM_API_KEY_MAX_OVERLAP_SECONDS
AGENT_BOM_API_KEY_MAX_TTL_SECONDS
AGENT_BOM_API_LOCAL_PATH_SCANS
AGENT_BOM_API_SCAN_ALLOW_FOREIGN_OWNER
AGENT_BOM_API_SCAN_ROOT
# control-plane inter-agent firewall policy path is read per request for hot deployment changes
AGENT_BOM_API_FIREWALL_POLICY
AGENT_BOM_API_TOKEN
AGENT_BOM_API_URL
AGENT_BOM_AUDIT_DB
# tier-B (replay-only) capture toggle — issue #2261
AGENT_BOM_CAPTURE_REPLAY
AGENT_BOM_AUDIT_HMAC_KEY
AGENT_BOM_AUDIT_HMAC_KEY_ID
AGENT_BOM_AUDIT_HMAC_LAST_ROTATED
AGENT_BOM_AUDIT_HMAC_MAX_AGE_DAYS
AGENT_BOM_AUDIT_HMAC_ROTATION_DAYS
AGENT_BOM_AUTH_SESSION_ATTEMPTS_PER_MINUTE
AGENT_BOM_AUTO_UPDATE_DB
AGENT_BOM_BACKPRESSURE_ENABLED
AGENT_BOM_BROWSER_SESSION_SIGNING_KEY
AGENT_BOM_BROWSER_SESSION_SIGNING_KEY_LAST_ROTATED
AGENT_BOM_BROWSER_SESSION_SIGNING_KEY_MAX_AGE_DAYS
AGENT_BOM_BROWSER_SESSION_SIGNING_KEY_ROTATION_DAYS
AGENT_BOM_CLICKHOUSE_BUFFERED
AGENT_BOM_CLICKHOUSE_FLUSH_INTERVAL
AGENT_BOM_CLICKHOUSE_MAX_BATCH
AGENT_BOM_CLICKHOUSE_PASSWORD
AGENT_BOM_CLICKHOUSE_URL
AGENT_BOM_CLICKHOUSE_USER
# CLI profile config path override; read at command invocation time.
AGENT_BOM_CONFIG
AGENT_BOM_COMPLIANCE_BUNDLE_TTL_SECONDS
AGENT_BOM_COMPLIANCE_ED25519_PRIVATE_KEY_PEM
AGENT_BOM_COMPLIANCE_SIGNING_LAST_ROTATED
AGENT_BOM_COMPLIANCE_SIGNING_MAX_AGE_DAYS
AGENT_BOM_COMPLIANCE_SIGNING_ROTATION_DAYS
AGENT_BOM_CONTROL_PLANE_REPLICAS
# Multi-tenant boundary signal for CLI/MCP strict tenant resolution (#1964).
AGENT_BOM_REQUIRE_TENANT_BOUNDARY
# MCP-specific tenant override (#1964). Set on the agent-bom mcp server
# process when its tenant context differs from AGENT_BOM_TENANT_ID.
AGENT_BOM_MCP_TENANT_ID
AGENT_BOM_CONTROL_PLANE_TOKEN
AGENT_BOM_CORS_ALL
AGENT_BOM_DASHBOARD_CSP_HASH_MANIFEST
AGENT_BOM_DB
AGENT_BOM_DB_PATH
AGENT_BOM_DB_SOURCES
AGENT_BOM_DEFAULT_ROLE
AGENT_BOM_DEPLOYMENT_ENV
AGENT_BOM_DISABLE_DOCS
AGENT_BOM_ENABLE_LOCAL_PATH_SCANS
AGENT_BOM_ENV
AGENT_BOM_EXTERNAL_SECRETS_ENABLED
AGENT_BOM_GATEWAY_ALLOW_INSECURE_NO_AUTH
AGENT_BOM_GATEWAY_BEARER_TOKEN
AGENT_BOM_GATEWAY_DETECT_VISUAL_LEAKS
# shared fallback policy path for standalone gateway and control-plane firewall decision route
AGENT_BOM_GATEWAY_FIREWALL_POLICY
AGENT_BOM_GATEWAY_FIREWALL_POLICY_RELOAD_SECONDS
AGENT_BOM_GATEWAY_POLICY_RELOAD_SECONDS
AGENT_BOM_GATEWAY_RATE_LIMIT_PER_TENANT_PER_MINUTE
AGENT_BOM_GATEWAY_REPLICAS
AGENT_BOM_GATEWAY_REQUIRE_SHARED_RATE_LIMIT
AGENT_BOM_GRAPH_DB
AGENT_BOM_GRAPH_DELTA_SLACK_WEBHOOK
AGENT_BOM_GRAPH_DELTA_WEBHOOK
AGENT_BOM_GRAPH_WRITE_BATCH_SIZE
AGENT_BOM_HSTS_MAX_AGE_SECONDS
AGENT_BOM_HSTS_PRELOAD
AGENT_BOM_LOG
AGENT_BOM_LOG_FILE
AGENT_BOM_LOG_JSON
AGENT_BOM_LOG_LEVEL
AGENT_BOM_MAX_MANIFEST_BYTES
AGENT_BOM_MCP_BEARER_TOKEN
AGENT_BOM_MCP_SANDBOX
AGENT_BOM_MCP_SANDBOX_CPUS
AGENT_BOM_MCP_SANDBOX_EGRESS
AGENT_BOM_MCP_SANDBOX_IMAGE
AGENT_BOM_MCP_SANDBOX_IMAGE_PIN_POLICY
AGENT_BOM_MCP_SANDBOX_MEMORY
AGENT_BOM_MCP_SANDBOX_MOUNTS
AGENT_BOM_MCP_SANDBOX_PIDS_LIMIT
AGENT_BOM_MCP_MODE
AGENT_BOM_MCP_SANDBOX_RUNTIME
AGENT_BOM_MCP_SANDBOX_TIMEOUT_SECONDS
AGENT_BOM_MCP_SANDBOX_TMPFS_SIZE
AGENT_BOM_MCP_SANDBOX_USER
AGENT_BOM_METRICS_TOKEN
AGENT_BOM_ATLAS_CATALOG_MODE
AGENT_BOM_ATLAS_CATALOG_PATH
AGENT_BOM_MITRE_CATALOG_MODE
AGENT_BOM_MITRE_CATALOG_PATH
AGENT_BOM_OCI_MAX_DECOMPRESSION_RATIO
AGENT_BOM_OCI_MAX_JAR_UNCOMPRESSED_BYTES
AGENT_BOM_OCI_MAX_LAYER_UNCOMPRESSED_BYTES
AGENT_BOM_OFFLINE
AGENT_BOM_OIDC_ALLOWED_JWKS_URIS
AGENT_BOM_OIDC_ALLOW_DEFAULT_TENANT
AGENT_BOM_OIDC_AUDIENCE
AGENT_BOM_OIDC_ISSUER
AGENT_BOM_OIDC_JWKS_URI
AGENT_BOM_OIDC_REQUIRED_NONCE
AGENT_BOM_OIDC_REQUIRE_ROLE_CLAIM
AGENT_BOM_OIDC_REQUIRE_TENANT_CLAIM
AGENT_BOM_OIDC_ROLE_CLAIM
AGENT_BOM_OIDC_TENANT_CLAIM
AGENT_BOM_OIDC_TENANT_PROVIDERS_JSON
# Local metadata-only entitlement file for self-hosted packaging.
AGENT_BOM_ENTITLEMENT_FILE
AGENT_BOM_OTEL_TRACES_ENDPOINT
AGENT_BOM_OTEL_TRACES_HEADERS
AGENT_BOM_POSTGRES_URL
# API posture webhook outbox SQLite path override; deploy-time operator setting.
AGENT_BOM_POSTURE_WEBHOOK_OUTBOX_DB
# CLI profile selector; also exposed as the root --profile option.
AGENT_BOM_PROFILE
AGENT_BOM_PROTECTION_API_KEY
AGENT_BOM_PROXY_AUDIT_BUFFER_MAX_BYTES
AGENT_BOM_PROXY_AUDIT_CIRCUIT_BREAKER_COOLDOWN_SECONDS
AGENT_BOM_PROXY_AUDIT_CIRCUIT_BREAKER_THRESHOLD
AGENT_BOM_PROXY_AUDIT_DLQ_PATH
AGENT_BOM_PROXY_AUDIT_FSYNC
AGENT_BOM_PROXY_AUDIT_MAX_ROTATED_FILES
AGENT_BOM_PROXY_AUDIT_PUSH_BACKOFF_MAX_SECONDS
AGENT_BOM_PROXY_AUDIT_SPILLOVER_MAX_BYTES
AGENT_BOM_PROXY_AUDIT_SPILLOVER_PATH
AGENT_BOM_PROXY_CONTROL_PLANE_MTLS_CERT_HEADER
AGENT_BOM_PROXY_CONTROL_PLANE_MTLS_CLIENT_CA_REF
AGENT_BOM_PROXY_CONTROL_PLANE_MTLS_EVIDENCE_REF
AGENT_BOM_PROXY_CONTROL_PLANE_MTLS_MODE
AGENT_BOM_PROXY_CONTROL_PLANE_MTLS_PROVIDER
# Inter-agent firewall (#982 PR 3) — proxy CLI flags, deploy-only toggles.
AGENT_BOM_PROXY_FIREWALL_GATEWAY_TOKEN
AGENT_BOM_PROXY_FIREWALL_GATEWAY_URL
AGENT_BOM_PROXY_FIREWALL_TARGET_ID
AGENT_BOM_PROXY_POLICY_CACHE_ED25519_PRIVATE_KEY_PEM
AGENT_BOM_PROXY_POLICY_CACHE_MAX_AGE_SECONDS
AGENT_BOM_PROXY_POLICY_CACHE_PATH
AGENT_BOM_PROXY_URL
AGENT_BOM_PUSH_API_KEY
AGENT_BOM_PUSH_ENROLLMENT_NAME
AGENT_BOM_PUSH_ENVIRONMENT
AGENT_BOM_PUSH_MDM_PROVIDER
AGENT_BOM_PUSH_OWNER
AGENT_BOM_PUSH_SOURCE_ID
AGENT_BOM_PUSH_TAGS
AGENT_BOM_PUSH_URL
AGENT_BOM_RATE_LIMIT_KEY
AGENT_BOM_REGISTRY_AIRGAPPED
# tier-B replay-log TTL in days — issue #2261 (default 7)
AGENT_BOM_REPLAY_TTL_DAYS
AGENT_BOM_REGISTRY_PASS
AGENT_BOM_REGISTRY_USER
AGENT_BOM_REQUIRE_AUDIT_HMAC
AGENT_BOM_REQUIRE_BROWSER_SESSION_SIGNING_KEY
AGENT_BOM_REQUIRE_SCIM
AGENT_BOM_REQUIRE_SHARED_RATE_LIMIT
AGENT_BOM_REQUIRE_SHARED_SCIM_STORE
AGENT_BOM_RESPONSE_SIGN_KEY
# release-only stdio MCP fixture exits after tools/list for Docker proxy smoke
AGENT_BOM_RUNTIME_SMOKE_ONESHOT
AGENT_BOM_SAFE_SCAN_ROOTS
AGENT_BOM_SAML_IDP_ENTITY_ID
AGENT_BOM_SAML_IDP_SSO_URL
AGENT_BOM_SAML_IDP_X509_CERT
AGENT_BOM_SAML_RELAY_STATE_TTL_SECONDS
AGENT_BOM_SAML_REQUIRE_ROLE_ATTRIBUTE
AGENT_BOM_SAML_REQUIRE_TENANT_ATTRIBUTE
AGENT_BOM_SAML_ROLE_ATTRIBUTE
AGENT_BOM_SAML_SESSION_TTL_SECONDS
AGENT_BOM_SAML_SP_ACS_URL
AGENT_BOM_SAML_SP_ENTITY_ID
AGENT_BOM_SAML_TENANT_ATTRIBUTE
AGENT_BOM_SCAN_CACHE
AGENT_BOM_SCIM_BASE_PATH
AGENT_BOM_SCIM_BEARER_TOKEN
AGENT_BOM_SCIM_BEARER_TOKEN_ID
AGENT_BOM_SCIM_DEFAULT_ROLE
AGENT_BOM_SCIM_EXTERNAL_ID_ATTRIBUTE
AGENT_BOM_SCIM_REQUIRE_GROUPS
AGENT_BOM_SCIM_ROLE_ATTRIBUTE
AGENT_BOM_SCIM_TENANT_ATTRIBUTE
AGENT_BOM_SCIM_TENANT_ID
AGENT_BOM_SECRET_PROVIDER
AGENT_BOM_SESSION_COOKIE_MAX_AGE_SECONDS
AGENT_BOM_SESSION_COOKIE_SECURE
AGENT_BOM_SHUTDOWN_DRAIN_SECONDS
AGENT_BOM_SIDECAR_PROXY_IMAGE
AGENT_BOM_SIDECAR_TOKEN_SECRET_KEY
AGENT_BOM_SIDECAR_TOKEN_SECRET_NAME
AGENT_BOM_SIEM_FORMAT
AGENT_BOM_SIEM_INDEX
AGENT_BOM_SIEM_TOKEN
AGENT_BOM_SIEM_TYPE
AGENT_BOM_SIEM_URL
AGENT_BOM_SKILLS_SCAN_CONCURRENCY
AGENT_BOM_STATE_DIR
AGENT_BOM_TAINT_MAX_DEPTH
AGENT_BOM_TENANT_ID
AGENT_BOM_TLS_CERT_FILE
AGENT_BOM_TLS_CLIENT_CA_FILE
AGENT_BOM_TLS_KEY_FILE
AGENT_BOM_TLS_REQUIRE_CLIENT_CERT
AGENT_BOM_TRUST_PROXY_AUTH
AGENT_BOM_TRUST_PROXY_AUTH_ISSUER
AGENT_BOM_TRUST_PROXY_AUTH_SECRET
AGENT_BOM_VERSION
AGENT_BOM_VISUAL_LEAK_TIMEOUT_SECONDS
