You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
My current lane looks like:
lane :beta do
api_key = app_store_connect_api_key()
increment_build_number()
get_certificates(api_key: api_key)
get_provisioning_profile(api_key: api_key)
build_app(xcargs: "-allowProvisioningUpdates")
upload_to_testflight(api_key: api_key)
end
When my GitLab CI/CD job runs, I can see it logs some sensitive contents "my certificates".
[08:52:33]: Creating authorization token for App Store Connect API
[08:52:33]: Fetching profiles...
[08:52:34]: Verifying certificates...
[08:52:34]: $ security find-certificate -a -c 'Apple Worldwide Developer Relations' -p /Users/ec2-user/Library/Keychains/login.keychain-db
[08:52:34]: ▸ -----BEGIN CERTIFICATE-----
[08:52:34]: ▸ ################################
[08:52:34]: ▸ ################################
These logs are accessible by any user having access to the repo. Is there any option to silent this logs and preventing them from being logged?
Beta Was this translation helpful? Give feedback.
All reactions