Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: Masking of secrets in build logs #5119

Open
2 tasks done
kamal-devtron opened this issue May 15, 2024 · 0 comments
Open
2 tasks done

Feature: Masking of secrets in build logs #5119

kamal-devtron opened this issue May 15, 2024 · 0 comments
Assignees
@abhibhaw @nishant-d @prakarsh-dt
Labels
enhancement New feature or request ENT-DEP

Comments

@kamal-devtron
Copy link
Contributor

kamal-devtron commented May 15, 2024
edited by systemsdt

🔖 Feature description

Masking of global secrets in build logs

🎤 Pitch / Usecases

The exposure of a global secret in build logs poses a significant security risk. When utilizing secrets within pre-build, post-build, or Docker steps that involve displaying the value, measures should be implemented to mask the secret and prevent its visibility in logs.
UseCase : The secrets are visible if set -x is used in the script, and we echo $secret within a file.

🔄️ Alternative

No response

👀 Have you spent some time to check if this issue has been raised before?

  • I checked and didn't find similar issue

🏢 Have you read the Code of Conduct?

AB#9806
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@abhibhaw abhibhaw

@nishant-d nishant-d

@prakarsh-dt prakarsh-dt

Labels
enhancement New feature or request ENT-DEP
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@abhibhaw @nishant-d @prakarsh-dt @kamal-devtron