From: KOSAKI Motohiro Date: 2016-11-16T15:14:36+01:00 Subject: [ruby-core:78172] Re: [Ruby trunk Bug#12921] Retrieve user and password for proxy from env > You have to understand that environment variables are in fact insecure. It is a very bad idea to store passwords there. Surprising or not, insecure is insecure. We shall not introduce this. Well, less point this to me. Since r54432, open-uri uses ENV['http-proxy']. You don't talk about ruby's policy. This ticket is less point too. http-proxy is useful for command-line utilities. Why don't you use open-uri? Unsubscribe: