Skip to content

[pull] master from DataDog:master#347

Merged
pull[bot] merged 4 commits into
ConnectionMaster:masterfrom
DataDog:master
May 19, 2026
Merged

[pull] master from DataDog:master#347
pull[bot] merged 4 commits into
ConnectionMaster:masterfrom
DataDog:master

Conversation

@pull
Copy link
Copy Markdown

@pull pull Bot commented May 19, 2026
edited
Loading

See Commits and Changes for more details.

Created by pull[bot] (v2.0.0-alpha.4)

Can you help keep this open source service alive? 💖 Please sponsor : )

luczhou and others added 4 commits May 19, 2026 14:37
@luczhou @claude
Redact Authorization (Bearer) header in sanitize_request_header (#3340)
f983c3b 
api_client.rb's debug log path calls sanitize_request_header before
@config.logger.debug to mask DD-API-KEY and DD-APPLICATION-KEY values.
The Authorization header set from Bearer-token auth (delegated tokens,
PATs) is missing from the keys_to_redact list and gets logged verbatim
— any caller running with debug logging and access-token auth leaks
the bearer to the global logger.

Surfaced cross-language by terraform-provider-datadog#3757, which is
the first Terraform code path to set the equivalent ContextAccessToken
in the Go SDK. The same gap exists here in Ruby.

Add "Authorization" as a third entry in keys_to_redact. Apply the
change to both the .j2 template and the generated api_client.rb so
the file matches what the next regen produces.

Test (spec/api_client_spec.rb #sanitize_request_header) drives the
method directly with all three credential headers plus a non-credential
header set, asserts each credential becomes "REDACTED", the non-
credential header passes through unchanged, and the input hash is not
mutated.

Refs: CRED-2625, terraform-provider-datadog#3757

Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@api-clients-generation-pipeline
Add missing scorecards OpenAPI specs (#3315)
a856a81 
Co-authored-by: ci.datadog-api-spec <packages@datadoghq.com>
@api-clients-generation-pipeline
Add OpenAPI spec for Model Lab API v2 endpoints (#3347)
ee56877 
Co-authored-by: ci.datadog-api-spec <packages@datadoghq.com>
@api-clients-generation-pipeline
Monitors Augmented Query Add Group By Source (#3357)
605d258 
Co-authored-by: ci.datadog-api-spec <packages@datadoghq.com>
@pull pull Bot locked and limited conversation to collaborators May 19, 2026
@pull pull Bot added the ⤵️ pull label May 19, 2026
@pull pull Bot merged commit 605d258 into ConnectionMaster:master May 19, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

⤵️ pull

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@luczhou