From 46aefd03bdd2577e0f5a59701d69af57b1d09475 Mon Sep 17 00:00:00 2001
From: Phileco <132178579+krishnprakash@users.noreply.github.com>
Date: Thu, 27 Mar 2025 19:08:49 +0530
Subject: [PATCH 1/3] Potential fix for code scanning alert no. 3: Clear-text
 logging of sensitive information

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 public/cloudflare-one/static/authenticated-doh.py | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/public/cloudflare-one/static/authenticated-doh.py b/public/cloudflare-one/static/authenticated-doh.py
index 746e4c70016f8bc..83ea1b0b8a68b54 100644
--- a/public/cloudflare-one/static/authenticated-doh.py
+++ b/public/cloudflare-one/static/authenticated-doh.py
@@ -145,8 +145,7 @@ def request(method, url, body):
 if client_id == "new":
     service_token_name = input('Please input name for service token > ')
     client_id, client_secret = request_create_service_token(service_token_name)
-    print(
-        f"Created service token with client_id {client_id} and client_secret {client_secret}. You may want to save these secrets.")
+    print("Created service token. You may want to save the client_id and client_secret securely.")
 
 
 if len(client_secret) == 0:

From 30cfccfe2dbb21fa2f732dcb85bd4722d09f1cae Mon Sep 17 00:00:00 2001
From: Phileco <132178579+krishnprakash@users.noreply.github.com>
Date: Thu, 27 Mar 2025 19:22:11 +0530
Subject: [PATCH 2/3] Potential fix for code scanning alert no. 1: Clear-text
 logging of sensitive information

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 public/cloudflare-one/static/authenticated-doh.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/public/cloudflare-one/static/authenticated-doh.py b/public/cloudflare-one/static/authenticated-doh.py
index 83ea1b0b8a68b54..9cb3f0c2dbf0adb 100644
--- a/public/cloudflare-one/static/authenticated-doh.py
+++ b/public/cloudflare-one/static/authenticated-doh.py
@@ -69,7 +69,8 @@ def request_doh_token(account_tag, user_id, client_id, client_secret):
                '-H', f"Cf-Access-Client-Id: {client_id}",
                '-H', f"Cf-Access-Client-Secret: {client_secret}"]
     if verbose:
-        print(f"Issuing request {' '.join(command)}")
+        sanitized_command = [part if "Cf-Access-Client-Secret" not in part else "Cf-Access-Client-Secret: [REDACTED]" for part in command]
+        print(f"Issuing request {' '.join(sanitized_command)}")
     response = json.loads(subprocess.check_output(command))
     if verbose:
         print("Got response:")

From f98c196cc222818082b3473e47256c3f295e74c9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 27 Mar 2025 20:07:55 +0000
Subject: [PATCH 3/3] [Docs Site] Bump astro from 5.5.4 to 5.5.5

Bumps [astro](https://github.com/withastro/astro/tree/HEAD/packages/astro) from 5.5.4 to 5.5.5.
- [Release notes](https://github.com/withastro/astro/releases)
- [Changelog](https://github.com/withastro/astro/blob/main/packages/astro/CHANGELOG.md)
- [Commits](https://github.com/withastro/astro/commits/astro@5.5.5/packages/astro)

---
updated-dependencies:
- dependency-name: astro
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package-lock.json | 10 +++++-----
 package.json      |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 1a0e3ac7fe1014d..b18e3f2f2e33513 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -34,7 +34,7 @@
 				"@types/react-dom": "19.0.4",
 				"@typescript-eslint/parser": "8.28.0",
 				"algoliasearch": "5.23.0",
-				"astro": "5.5.4",
+				"astro": "5.5.5",
 				"astro-breadcrumbs": "3.3.1",
 				"astro-icon": "1.1.5",
 				"astro-live-code": "0.0.5",
@@ -5683,9 +5683,9 @@
 			}
 		},
 		"node_modules/astro": {
-			"version": "5.5.4",
-			"resolved": "https://registry.npmjs.org/astro/-/astro-5.5.4.tgz",
-			"integrity": "sha512-rc9Mj6dIKM9ylTSQ0/S1l5f1iSDNs0PEjRMnvVpZ0W+wfBCu99JEuXy+fiWDNT6gf60bC4dKQehZxZGdSJB9kg==",
+			"version": "5.5.5",
+			"resolved": "https://registry.npmjs.org/astro/-/astro-5.5.5.tgz",
+			"integrity": "sha512-fdnnK5dhWNIQT/cXzvaGs9il4T5noi4jafobdntbuNOrRxI1JnOxDfrtBadUo6cknCRCFhYrXh4VndCqj1a4Sg==",
 			"dev": true,
 			"license": "MIT",
 			"dependencies": {
@@ -5738,7 +5738,7 @@
 				"unist-util-visit": "^5.0.0",
 				"unstorage": "^1.15.0",
 				"vfile": "^6.0.3",
-				"vite": "^6.2.1",
+				"vite": "^6.2.3",
 				"vitefu": "^1.0.6",
 				"xxhash-wasm": "^1.1.0",
 				"yargs-parser": "^21.1.1",
diff --git a/package.json b/package.json
index 13af89d9e0dcb29..a6bf7ea98c1ed96 100644
--- a/package.json
+++ b/package.json
@@ -52,7 +52,7 @@
 		"@types/react-dom": "19.0.4",
 		"@typescript-eslint/parser": "8.28.0",
 		"algoliasearch": "5.23.0",
-		"astro": "5.5.4",
+		"astro": "5.5.5",
 		"astro-breadcrumbs": "3.3.1",
 		"astro-icon": "1.1.5",
 		"astro-live-code": "0.0.5",