-
Notifications
You must be signed in to change notification settings - Fork 413
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
default "cscli machines add" to write credentials to stdout, require explicit path to overwrite local_api_credentials.yaml #2594
Conversation
explicit path to overwrite local_api_credentials.yaml
@mmetc: There are no 'kind' label on this PR. You need a 'kind' label to generate the release automatically.
DetailsI am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository. |
@mmetc: There are no area labels on this PR. You can add as many areas as you see fit.
DetailsI am a bot created to help the crowdsecurity developers manage community feedback and contributions. You can check out my manifest file to understand my behavior and what I can do. If you want to use this for your project, you can check out the BirthdayResearch/oss-governance-bot repository. |
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #2594 +/- ##
==========================================
- Coverage 57.24% 51.88% -5.37%
==========================================
Files 190 109 -81
Lines 26156 14576 -11580
==========================================
- Hits 14974 7563 -7411
+ Misses 9605 6177 -3428
+ Partials 1577 836 -741
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
err = os.WriteFile(dumpFile, apiConfigDump, 0644) | ||
|
||
if dumpFile == "" { | ||
fmt.Printf("%s\n", string(apiConfigDump)) |
Check failure
Code scanning / CodeQL
Clear-text logging of sensitive information High
Sensitive data returned by an access to machinePassword
Sensitive data returned by an access to machinePassword
Sensitive data returned by an access to password
Sensitive data returned by an access to Password
Sensitive data returned by an access to password
Sensitive data returned by an access to password
ca51493
to
4018e67
Compare
Draft until we decide a deprecation path, if the change is accepted.
Notably, the installation scripts have to be updated before this change goes into effect.