- Add .infisical.json linking the repo to the breakpilot-compliance
project on the self-hosted secrets.meghsakha.com instance.
- Add Makefile with infisical-aware targets (make dev, dev-build,
dev-down, secrets, secrets-set). `make dev` runs `infisical run
--env=dev -- docker compose up`, so secrets are injected at run
time and .env files no longer touch disk.
- Add INFISICAL_SETUP.md with per-developer onboarding (CLI install,
login, verify project link, run targets, Claude Code usage patterns,
troubleshooting).
- Update README Quick Start to drop the cp .env.example .env step and
point at make dev + INFISICAL_SETUP.md.
- Remove HashiCorp Vault references from CLAUDE.md (core-services list
+ sensitive-files list) and compliance-checklist.md TOM section;
replace with Infisical.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Sharang Parnerkar