Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vela exec pipeline loads all host environmental variables into pipeline #340

Closed
zapplebee opened this issue Jul 23, 2021 · 1 comment · Fixed by go-vela/cli#492
Closed

vela exec pipeline loads all host environmental variables into pipeline #340

zapplebee opened this issue Jul 23, 2021 · 1 comment · Fixed by go-vela/cli#492
Labels
area/cli Indicates a change to the CLI bug Indicates a bug

Comments

@zapplebee
Copy link

Description

With this .vela.yml

version: "1"
steps:
- name: see-env
  image: python:alpine
  commands:
  - printenv

Running vela exec pipeline will print all of the host's environmental variables.

Value

This makes running community plugins, and frankly any plugins unsafe.

Useful Information

  1. What is the output of vela --version?

vela version v0.7.4

  1. What operating system is being used?

MacOS Catalina 10.15.7
3. Any other important details?

n/a
@zapplebee zapplebee added the bug Indicates a bug label Jul 23, 2021
@susangreve
Copy link

Thank you for opening this issue! We've added it to the backlog and will assess priority

@wass3r wass3r added the area/cli Indicates a change to the CLI label Sep 3, 2022
@JordanSussman JordanSussman mentioned this issue Oct 9, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/cli Indicates a change to the CLI bug Indicates a bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

enhance(exec): templates and env support for exec pipeline go-vela/cli
3 participants
@wass3r @susangreve @zapplebee