From f9ae56813e6efc18b66dcd49b39e8b01c44e19b1 Mon Sep 17 00:00:00 2001 From: Phileco <132178579+krishnprakash@users.noreply.github.com> Date: Wed, 19 Mar 2025 16:32:23 +0530 Subject: [PATCH 1/3] Potential fix for code scanning alert no. 3: Clear-text logging of sensitive information Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- public/cloudflare-one/static/authenticated-doh.py | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/public/cloudflare-one/static/authenticated-doh.py b/public/cloudflare-one/static/authenticated-doh.py index 746e4c70016f8b..83ea1b0b8a68b5 100644 --- a/public/cloudflare-one/static/authenticated-doh.py +++ b/public/cloudflare-one/static/authenticated-doh.py @@ -145,8 +145,7 @@ def request(method, url, body): if client_id == "new": service_token_name = input('Please input name for service token > ') client_id, client_secret = request_create_service_token(service_token_name) - print( - f"Created service token with client_id {client_id} and client_secret {client_secret}. You may want to save these secrets.") + print("Created service token. You may want to save the client_id and client_secret securely.") if len(client_secret) == 0: From c946f7bca897ba23d272a22ad32a74d214ed3172 Mon Sep 17 00:00:00 2001 From: Phileco <132178579+krishnprakash@users.noreply.github.com> Date: Wed, 19 Mar 2025 16:54:24 +0530 Subject: [PATCH 2/3] Potential fix for code scanning alert no. 1: Clear-text logging of sensitive information Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- public/cloudflare-one/static/authenticated-doh.py | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/public/cloudflare-one/static/authenticated-doh.py b/public/cloudflare-one/static/authenticated-doh.py index 83ea1b0b8a68b5..9cb3f0c2dbf0ad 100644 --- a/public/cloudflare-one/static/authenticated-doh.py +++ b/public/cloudflare-one/static/authenticated-doh.py @@ -69,7 +69,8 @@ def request_doh_token(account_tag, user_id, client_id, client_secret): '-H', f"Cf-Access-Client-Id: {client_id}", '-H', f"Cf-Access-Client-Secret: {client_secret}"] if verbose: - print(f"Issuing request {' '.join(command)}") + sanitized_command = [part if "Cf-Access-Client-Secret" not in part else "Cf-Access-Client-Secret: [REDACTED]" for part in command] + print(f"Issuing request {' '.join(sanitized_command)}") response = json.loads(subprocess.check_output(command)) if verbose: print("Got response:") From f1fbb68e0758e48e12209723b7dc9733773d3af4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 19 Mar 2025 19:58:02 +0000 Subject: [PATCH 3/3] [Docs Site] Bump @astrojs/tailwind from 5.1.5 to 6.0.0 Bumps [@astrojs/tailwind](https://github.com/withastro/astro/tree/HEAD/packages/integrations/tailwind) from 5.1.5 to 6.0.0. - [Release notes](https://github.com/withastro/astro/releases) - [Changelog](https://github.com/withastro/astro/blob/main/packages/integrations/tailwind/CHANGELOG.md) - [Commits](https://github.com/withastro/astro/commits/@astrojs/tailwind@6.0.0/packages/integrations/tailwind) --- updated-dependencies: - dependency-name: "@astrojs/tailwind" dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index cb4a9112e1e06d..baebdd2a1b87c1 100644 --- a/package-lock.json +++ b/package-lock.json @@ -17,7 +17,7 @@ "@astrojs/starlight": "0.32.3", "@astrojs/starlight-docsearch": "0.6.0", "@astrojs/starlight-tailwind": "3.0.0", - "@astrojs/tailwind": "5.1.5", + "@astrojs/tailwind": "6.0.0", "@cloudflare/vitest-pool-workers": "0.8.1", "@cloudflare/workers-types": "4.20250317.0", "@codingheads/sticky-header": "1.0.2", @@ -851,9 +851,9 @@ } }, "node_modules/@astrojs/tailwind": { - "version": "5.1.5", - "resolved": "https://registry.npmjs.org/@astrojs/tailwind/-/tailwind-5.1.5.tgz", - "integrity": "sha512-1diguZEau7FZ9vIjzE4BwavGdhD3+JkdS8zmibl1ene+EHgIU5hI0NMgRYG3yea+Niaf7cyMwjeWeLvzq/maxg==", + "version": "6.0.0", + "resolved": "https://registry.npmjs.org/@astrojs/tailwind/-/tailwind-6.0.0.tgz", + "integrity": "sha512-GbEK2/h0nvY8i6g1GZT5ddHAgj71lQIf34/j7+jPLhUti3xDxKcWElApDe2jWvqAaKl2oKEh045ITSm8mU9BVQ==", "dev": true, "license": "MIT", "dependencies": { diff --git a/package.json b/package.json index fac38fcf1d388a..7fe60d40e6effc 100644 --- a/package.json +++ b/package.json @@ -35,7 +35,7 @@ "@astrojs/starlight": "0.32.3", "@astrojs/starlight-docsearch": "0.6.0", "@astrojs/starlight-tailwind": "3.0.0", - "@astrojs/tailwind": "5.1.5", + "@astrojs/tailwind": "6.0.0", "@cloudflare/vitest-pool-workers": "0.8.1", "@cloudflare/workers-types": "4.20250317.0", "@codingheads/sticky-header": "1.0.2",