Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

don't leak GH_TOKEN in exec promise output #1419

Merged
merged 1 commit into from
Jul 30, 2020
Merged

don't leak GH_TOKEN in exec promise output #1419

merged 1 commit into from
Jul 30, 2020

Conversation

hipstersmoothie
Copy link
Collaborator

@hipstersmoothie hipstersmoothie commented Jul 30, 2020
edited by adierkens
Loading

What Changed

sanitize the execPromise error output of the GH_TOKEN

Why

tokens in logs are bad!

Todo:

  • Add docs
📦 Published PR as canary version: under canary scope @auto-canary@9.49.1-canary.1419.17719.0

✨ Test out this PR locally via:

npm install @auto-canary/bot-list@9.49.1-canary.1419.17719.0
npm install @auto-canary/auto@9.49.1-canary.1419.17719.0
npm install @auto-canary/core@9.49.1-canary.1419.17719.0
npm install @auto-canary/all-contributors@9.49.1-canary.1419.17719.0
npm install @auto-canary/brew@9.49.1-canary.1419.17719.0
npm install @auto-canary/chrome@9.49.1-canary.1419.17719.0
npm install @auto-canary/cocoapods@9.49.1-canary.1419.17719.0
npm install @auto-canary/conventional-commits@9.49.1-canary.1419.17719.0
npm install @auto-canary/crates@9.49.1-canary.1419.17719.0
npm install @auto-canary/exec@9.49.1-canary.1419.17719.0
npm install @auto-canary/first-time-contributor@9.49.1-canary.1419.17719.0
npm install @auto-canary/gem@9.49.1-canary.1419.17719.0
npm install @auto-canary/gh-pages@9.49.1-canary.1419.17719.0
npm install @auto-canary/git-tag@9.49.1-canary.1419.17719.0
npm install @auto-canary/gradle@9.49.1-canary.1419.17719.0
npm install @auto-canary/jira@9.49.1-canary.1419.17719.0
npm install @auto-canary/maven@9.49.1-canary.1419.17719.0
npm install @auto-canary/npm@9.49.1-canary.1419.17719.0
npm install @auto-canary/omit-commits@9.49.1-canary.1419.17719.0
npm install @auto-canary/omit-release-notes@9.49.1-canary.1419.17719.0
npm install @auto-canary/released@9.49.1-canary.1419.17719.0
npm install @auto-canary/s3@9.49.1-canary.1419.17719.0
npm install @auto-canary/slack@9.49.1-canary.1419.17719.0
npm install @auto-canary/twitter@9.49.1-canary.1419.17719.0
npm install @auto-canary/upload-assets@9.49.1-canary.1419.17719.0
# or 
yarn add @auto-canary/bot-list@9.49.1-canary.1419.17719.0
yarn add @auto-canary/auto@9.49.1-canary.1419.17719.0
yarn add @auto-canary/core@9.49.1-canary.1419.17719.0
yarn add @auto-canary/all-contributors@9.49.1-canary.1419.17719.0
yarn add @auto-canary/brew@9.49.1-canary.1419.17719.0
yarn add @auto-canary/chrome@9.49.1-canary.1419.17719.0
yarn add @auto-canary/cocoapods@9.49.1-canary.1419.17719.0
yarn add @auto-canary/conventional-commits@9.49.1-canary.1419.17719.0
yarn add @auto-canary/crates@9.49.1-canary.1419.17719.0
yarn add @auto-canary/exec@9.49.1-canary.1419.17719.0
yarn add @auto-canary/first-time-contributor@9.49.1-canary.1419.17719.0
yarn add @auto-canary/gem@9.49.1-canary.1419.17719.0
yarn add @auto-canary/gh-pages@9.49.1-canary.1419.17719.0
yarn add @auto-canary/git-tag@9.49.1-canary.1419.17719.0
yarn add @auto-canary/gradle@9.49.1-canary.1419.17719.0
yarn add @auto-canary/jira@9.49.1-canary.1419.17719.0
yarn add @auto-canary/maven@9.49.1-canary.1419.17719.0
yarn add @auto-canary/npm@9.49.1-canary.1419.17719.0
yarn add @auto-canary/omit-commits@9.49.1-canary.1419.17719.0
yarn add @auto-canary/omit-release-notes@9.49.1-canary.1419.17719.0
yarn add @auto-canary/released@9.49.1-canary.1419.17719.0
yarn add @auto-canary/s3@9.49.1-canary.1419.17719.0
yarn add @auto-canary/slack@9.49.1-canary.1419.17719.0
yarn add @auto-canary/twitter@9.49.1-canary.1419.17719.0
yarn add @auto-canary/upload-assets@9.49.1-canary.1419.17719.0

@hipstersmoothie hipstersmoothie added the patch Increment the patch version when merged label Jul 30, 2020
@codecov
Copy link

codecov bot commented Jul 30, 2020
edited
Loading

Codecov Report

Merging #1419 into master will decrease coverage by 0.01%.
The diff coverage is 50.00%.

Impacted file tree graph

@@            Coverage Diff             @@
##           master    #1419      +/-   ##
==========================================
- Coverage   81.13%   81.11%   -0.02%     
==========================================
  Files          58       58              
  Lines        4251     4253       +2     
  Branches      934      935       +1     
==========================================
+ Hits         3449     3450       +1     
  Misses        563      563              
- Partials      239      240       +1
Impacted Files Coverage Δ
packages/core/src/auto.ts 77.62% <ø> (ø)
packages/core/src/utils/exec-promise.ts 79.48% <50.00%> (-1.60%) ⬇️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update c1ca81e...b8977ec. Read the comment docs.

@hipstersmoothie hipstersmoothie merged commit 3f1e77a into master Jul 30, 2020
@hipstersmoothie hipstersmoothie deleted the leaky-token branch July 30, 2020 02:50
@hipstersmoothie hipstersmoothie mentioned this pull request Jul 30, 2020
Closed
@adierkens
Copy link
Collaborator

🚀 PR was released in v9.49.1 🚀

@adierkens adierkens added the released This issue/pull request has been released. label Jul 30, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
patch Increment the patch version when merged released This issue/pull request has been released.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@hipstersmoothie @adierkens