From 5607dce611f43878f5489a7601d870937c3db0ce Mon Sep 17 00:00:00 2001
From: didericis <eric@dideric.is>
Date: Fri, 8 May 2026 00:16:14 -0400
Subject: [PATCH] docs(journal): 2026-05-08 00:15

---
 docs/JOURNAL.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/JOURNAL.md b/docs/JOURNAL.md
index 36922fe..8b97b44 100644
--- a/docs/JOURNAL.md
+++ b/docs/JOURNAL.md
@@ -3,3 +3,7 @@
 Append-only stream of thought. Newest entries on top. Each entry is a timestamp
 followed by freeform prose. Tag entries with `[name](tag://name)` links under
 the header — only when a coherent theme emerges. Otherwise just write.
+
+## 2026-05-08 00:15
+
+Thinking about how best to avoid exfiltration... one option is simply to create a bottle with no secrets in it, at all. Then there's no data to exfiltrate. This is probably the ideal solution for the research phase when implementing a PRD (specifically PUBLIC research). This would be something I would ideally want to do BEFORE the private research phase, as the private research phase could theoretically put secrets in a PRD. Reviewing the documents created during a private research phase would be a good way to mitigate this.