Project

General

Profile

Actions
Copy link

action #170308

open

coordination #105624: [saga][epic] Reconsider how openQA handles secrets

coordination #162080: [epic] Hide SCC regcodes like secrets and passwords

Secret handling doesn't scrub values from logs and/or result files

Added by szarate 5 months ago. Updated 4 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Regressions/Crashes
Target version:
QA (public) - future
Start date:
2024-11-26
Due date:
% Done:

0%

Estimated time:

Description

There's these two cases, where the secrets aren't scrubbed from the logs

https://github.com/os-autoinst/os-autoinst-distri-opensuse/pull/20427/files#diff-215b55dfdac537f19cff54b3a70a05a6e03a245187120ded9d3898820ab617c4R102-R113

Values corrresponding to _SECRET_SSH and _SECRET_DOCKER are both visible within the logs.

Actions
Copy link
 #1

Updated by okurz 5 months ago

  • Category set to Regressions/Crashes
  • Target version set to Ready
  • Parent task changed from #138653 to #162080
Actions
Copy link
 #2

Updated by okurz 5 months ago

  • Target version changed from Ready to Tools - Next
Actions
Copy link
 #3

Updated by okurz 4 months ago

  • Target version changed from Tools - Next to future
Actions
Copy link

Also available in: Atom PDF