diff --git a/git-ai/package-lock.json b/git-ai/package-lock.json
index 2d8886b..3b1ca6f 100644
--- a/git-ai/package-lock.json
+++ b/git-ai/package-lock.json
@@ -907,6 +907,12 @@
         }
       }
     },
+    "node_modules/deprecation": {
+      "version": "2.3.1",
+      "resolved": "https://registry.npmjs.org/deprecation/-/deprecation-2.3.1.tgz",
+      "integrity": "sha512-xmHIy4F3scKVwMsQ4WnVaS8bHOx0DmVwRywosKhaILI0ywMDWPtBSku2HNxRvF7jtwDRsoEwYQSfbxj8b7RlJQ==",
+      "license": "ISC"
+    },
     "node_modules/emoji-regex": {
       "version": "10.6.0",
       "resolved": "https://registry.npmjs.org/emoji-regex/-/emoji-regex-10.6.0.tgz",
diff --git a/git-ai/src/cli/pr-command.ts b/git-ai/src/cli/pr-command.ts
index 0ed4148..fa161b2 100644
--- a/git-ai/src/cli/pr-command.ts
+++ b/git-ai/src/cli/pr-command.ts
@@ -21,32 +21,29 @@ export async function runPRCommand(): Promise<void> {
 
     if (!origin || !origin.refs.fetch) {
       console.error('❌ Error: No remote "origin" found. Ensure your repo is hosted on GitHub.');
-      return;
+      process.exit(1);
     }
 
     const githubService = new GitHubService(configService, origin.refs.fetch);
 
-    // 2. Define the selection handler
-    const handleSelect = (pr: PullRequestMetadata) => {
-      console.log('\n-----------------------------------');
-      console.log(`🚀 Selected PR: #${pr.number}`);
-      console.log(`🔗 URL: ${pr.url}`);
-      console.log(`🌿 Branch: ${pr.branch} -> ${pr.base}`);
-      console.log('-----------------------------------\n');
-      
-      // In a future update, we can trigger gitService.checkout(pr.branch)
-      process.exit(0);
-    };
-
-    // 3. Launch the Ink TUI
-    const { waitUntilExit } = render(
+    // 2. Launch the Ink TUI
+    const renderInstance = render(
       React.createElement(PRList, {
         githubService,
-        onSelect: handleSelect
+        onSelect: (pr: PullRequestMetadata) => {
+          console.log('\n-----------------------------------');
+          console.log(`🚀 Selected PR: #${pr.number}`);
+          console.log(`🔗 URL: ${pr.url}`);
+          console.log(`🌿 Branch: ${pr.branch} -> ${pr.base}`);
+          console.log('-----------------------------------\n');
+          // In a future update, we can trigger gitService.checkout(pr.branch)
+          renderInstance.unmount();
+        }
       })
     );
 
-    await waitUntilExit();
+    // 3. Await clean exit
+    await renderInstance.waitUntilExit();
   } catch (error) {
     logger.error(error instanceof Error ? error : new Error(String(error)), 'Failed to initialize PR command');
     console.error('❌ Critical Error: Could not launch PR interface.');
diff --git a/git-ai/src/index.ts b/git-ai/src/index.ts
index 7570efc..8618465 100644
--- a/git-ai/src/index.ts
+++ b/git-ai/src/index.ts
@@ -7,7 +7,6 @@ import { logger } from './utils/logger.js';
 const program = new Command();
 const configService = new ConfigService();
 const gitService = new GitService();
-const aiService = new AIService(configService);
 
 program
   .name('ai-git')
@@ -18,6 +17,7 @@ program
   .description('Generate a commit message using AI and commit staged changes')
   .action(async () => {
     try {
+      const aiService = new AIService(configService);
       const diff = await gitService.getDiff();
       if (!diff) {
         console.log('No staged changes found. Please stage files first.');
diff --git a/git-ai/src/services/AIService.ts b/git-ai/src/services/AIService.ts
index 2b3e814..511e5d7 100644
--- a/git-ai/src/services/AIService.ts
+++ b/git-ai/src/services/AIService.ts
@@ -36,6 +36,8 @@ export class AIService implements AIProvider {
           maxOutputTokens: 200,
         },
       });
+    } else {
+      throw new Error(`Unsupported AI provider: ${config.ai.provider}`);
     }
   }
 
diff --git a/git-ai/src/services/ConfigService.ts b/git-ai/src/services/ConfigService.ts
index f4f33d0..16d7453 100644
--- a/git-ai/src/services/ConfigService.ts
+++ b/git-ai/src/services/ConfigService.ts
@@ -55,7 +55,7 @@ export class ConfigService {
 
   public saveConfig(newConfig: Config): void {
     const validated = ConfigSchema.parse(newConfig);
-    fs.writeFileSync(ConfigService.CONFIG_PATH, JSON.stringify(validated, null, 2));
+    fs.writeFileSync(ConfigService.CONFIG_PATH, JSON.stringify(validated, null, 2), { mode: 0o600 });
     this.config = validated;
   }
 }
\ No newline at end of file
diff --git a/git-ai/src/services/ConflictResolver.ts b/git-ai/src/services/ConflictResolver.ts
index 6c4334b..85782c2 100644
--- a/git-ai/src/services/ConflictResolver.ts
+++ b/git-ai/src/services/ConflictResolver.ts
@@ -1,5 +1,6 @@
 import fs from 'fs/promises';
 import path from 'path';
+import { randomBytes } from 'crypto';
 import { AIService } from './AIService.js';
 import { GitService } from '../core/GitService.js';
 import { logger } from '../utils/logger.js';
@@ -10,6 +11,54 @@ export interface ConflictDetail {
   suggestion?: string;
 }
 
+/**
+ * Patterns for detecting secrets and sensitive data in conflict content.
+ */
+const SECRET_PATTERNS: RegExp[] = [
+  /-----BEGIN\s+(?:RSA\s+)?PRIVATE KEY-----[\s\S]*?-----END\s+(?:RSA\s+)?PRIVATE KEY-----/gi,
+  /(?:api[_\s-]?key|apikey|secret|token|password|passwd|pwd|auth)['":\s=]+['"]?[A-Za-z0-9/+_\-]{16,}['"]?/gi,
+  // Long base64-like strings that resemble encoded tokens (standalone, not part of identifiers)
+  /(?<![A-Za-z0-9])([A-Za-z0-9+/]{40,}={0,2})(?![A-Za-z0-9])/g,
+  /(?<![A-Za-z0-9_])[a-f0-9]{32,64}(?![A-Za-z0-9_])/gi, // hex strings (hashes/keys)
+];
+
+/**
+ * Extracts only the conflict hunks (lines between <<<<<<< ... >>>>>>>) from file content.
+ */
+function extractConflictHunks(content: string): string {
+  const lines = content.split('\n');
+  const hunks: string[] = [];
+  let inConflict = false;
+  let hunk: string[] = [];
+
+  for (const line of lines) {
+    if (line.startsWith('<<<<<<<')) {
+      inConflict = true;
+      hunk = [line];
+    } else if (inConflict) {
+      hunk.push(line);
+      if (line.startsWith('>>>>>>>')) {
+        hunks.push(hunk.join('\n'));
+        hunk = [];
+        inConflict = false;
+      }
+    }
+  }
+
+  return hunks.length > 0 ? hunks.join('\n\n') : content;
+}
+
+/**
+ * Redacts common secret patterns from content before sending to an external model.
+ */
+function sanitizeContent(content: string): string {
+  let sanitized = extractConflictHunks(content);
+  for (const pattern of SECRET_PATTERNS) {
+    sanitized = sanitized.replace(pattern, '[REDACTED]');
+  }
+  return sanitized;
+}
+
 export class ConflictResolver {
   constructor(
     private aiService: AIService,
@@ -50,15 +99,18 @@ export class ConflictResolver {
   }
 
   /**
-   * Uses Gemini to analyze the conflict markers and suggest a fix
+   * Uses Gemini to analyze the conflict markers and suggest a fix.
+   * Sanitizes the content before sending to the external model.
    */
   public async suggestResolution(conflict: ConflictDetail): Promise<string> {
+    const sanitizedContent = sanitizeContent(conflict.content);
+
     const prompt = `
       You are a senior software architect. I have a merge conflict in the file: ${conflict.file}.
-      Below is the file content containing git conflict markers (<<<<<<<, =======, >>>>>>>).
+      Below are the conflict hunks containing git conflict markers (<<<<<<<, =======, >>>>>>>).
       
-      FILE CONTENT:
-      ${conflict.content}
+      CONFLICT HUNKS:
+      ${sanitizedContent}
       
       INSTRUCTIONS:
       1. Analyze the changes from both branches.
@@ -81,8 +133,8 @@ export class ConflictResolver {
   }
 
   /**
-   * Applies the AI's suggested resolution to the physical file.
-   * Uses atomic write with O_NOFOLLOW to prevent symlink attacks and TOCTOU races.
+   * Applies the AI's suggested resolution to the physical file using a truly atomic
+   * write: write to a temp file in the same directory, fsync, then rename to target.
    */
   public async applyResolution(file: string, resolvedContent: string): Promise<void> {
     const realRepoRoot = await fs.realpath(process.cwd());
@@ -95,11 +147,9 @@ export class ConflictResolver {
         throw new Error(`Refusing to write to symlink: ${file}`);
       }
     } catch (error: unknown) {
-      // Handle ENOENT gracefully - file doesn't exist yet, which is fine
       if (error instanceof Error && 'code' in error && (error as any).code === 'ENOENT') {
         // File does not exist, proceeding with creation is safe
       } else {
-        // Re-throw any other error
         throw error;
       }
     }
@@ -120,15 +170,26 @@ export class ConflictResolver {
       throw new Error(`Refusing to write outside repository root: ${file}`);
     }
 
-    // Use atomic write with O_NOFOLLOW to prevent TOCTOU races and symlink escape
-    const flags = fs.constants.O_NOFOLLOW | fs.constants.O_CREAT | fs.constants.O_TRUNC | fs.constants.O_WRONLY;
+    // Atomic write: write to a temp file, fsync, then rename into place.
+    const tempPath = path.join(targetParent, `.tmp-${process.pid}-${randomBytes(8).toString('hex')}`);
     const buffer = Buffer.from(resolvedContent, 'utf-8');
-    const fileHandle = await fs.open(targetPath, flags, 0o644);
+    const tempHandle = await fs.open(tempPath, fs.constants.O_CREAT | fs.constants.O_EXCL | fs.constants.O_WRONLY | fs.constants.O_NOFOLLOW, 0o644);
     try {
-      await fileHandle.write(buffer, 0, buffer.length);
-      await fileHandle.sync();
-    } finally {
-      await fileHandle.close();
+      await tempHandle.write(buffer, 0, buffer.length);
+      await tempHandle.sync();
+      await tempHandle.close();
+    } catch (error) {
+      await tempHandle.close().catch(() => {});
+      await fs.unlink(tempPath).catch(() => {});
+      throw error;
+    }
+
+    // Atomically replace target with temp file
+    try {
+      await fs.rename(tempPath, targetPath);
+    } catch (error) {
+      await fs.unlink(tempPath).catch(() => {});
+      throw error;
     }
     // Note: User should still 'git add' the file manually or via CLI flow
   }
diff --git a/git-ai/src/services/GitHubService.ts b/git-ai/src/services/GitHubService.ts
index 250e3c5..062fd85 100644
--- a/git-ai/src/services/GitHubService.ts
+++ b/git-ai/src/services/GitHubService.ts
@@ -33,6 +33,26 @@ export class GitHubService {
         this.parseRepoInfo(repoUrl);
     }
 
+    /**
+     * Strips credentials (userinfo) from a URL for safe logging.
+     */
+    private sanitizeUrl(url: string): string {
+        try {
+            // Handle SSH-style git URLs like git@github.com:owner/repo.git
+            const sshMatch = url.match(/^[^@]+@([^:]+):(.+)$/);
+            if (sshMatch) {
+                return `${sshMatch[1]}:${sshMatch[2]}`;
+            }
+            const parsed = new URL(url);
+            parsed.username = '';
+            parsed.password = '';
+            return parsed.toString();
+        } catch {
+            // If URL parsing fails, return a placeholder
+            return '[unparseable URL]';
+        }
+    }
+
     /**
      * Extracts owner and repo name from a git remote URL
      */
@@ -42,12 +62,12 @@ export class GitHubService {
             this.owner = match[1];
             this.repo = match[2];
         } else {
-            logger.error(`Could not parse GitHub owner/repo from remote URL: ${url}`);
+            logger.error(`Could not parse GitHub owner/repo from remote URL: ${this.sanitizeUrl(url)}`);
             throw new Error("Invalid GitHub remote URL. Expected github.com/<owner>/<repo>.");
         }
 
         if (!this.owner || !this.repo) {
-            logger.error(`Parsed empty GitHub owner/repo from remote URL: ${url}`);
+            logger.error(`Parsed empty GitHub owner/repo from remote URL: ${this.sanitizeUrl(url)}`);
             throw new Error("Could not determine GitHub owner and repository from remote URL.");
         }
     }