Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: unset NOTATION_USERNAME and NOTATION_PASSWORD to avoid leaking credentials to plugin #746

Merged
merged 6 commits into from
Jul 20, 2023
Merged

fix: unset NOTATION_USERNAME and NOTATION_PASSWORD to avoid leaking credentials to plugin #746

merged 6 commits into from
Jul 20, 2023

Conversation

JeyJeyGao
Copy link
Contributor

Fix:

  • unset credentials env after read the value

Resolves #709
Signed-off-by: Junjie Gao junjiegao@microsoft.com

@JeyJeyGao
fix: unset NOTATION_USERNAME and NOTATION_PASSWORD to avoid leaking
d5920d8 
credentials to plugin

Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
@JeyJeyGao JeyJeyGao marked this pull request as ready for review July 19, 2023 02:57
@JeyJeyGao
test: update test
fcc456b 
Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
@JeyJeyGao
fix: update code
7df4044 
Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
@JeyJeyGao
fix: unset registry credential before running each command
649db3f 
Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
@JeyJeyGao
fix: remove empty line
050bff0 
Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
priteshbandi
priteshbandi previously approved these changes Jul 19, 2023
View reviewed changes
Copy link
Contributor

@priteshbandi priteshbandi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@JeyJeyGao
fix: add E2E plugin credentials check
97aa497 
Signed-off-by: Junjie Gao <junjiegao@microsoft.com>
@codecov-commenter
Copy link

Codecov Report

Merging #746 (97aa497) into main (ce078a9) will increase coverage by 0.48%.
The diff coverage is 100.00%.

❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more.

@@            Coverage Diff             @@
##             main     #746      +/-   ##
==========================================
+ Coverage   63.66%   64.14%   +0.48%     
==========================================
  Files          40       40              
  Lines        2232     2237       +5     
==========================================
+ Hits         1421     1435      +14     
+ Misses        690      681       -9     
  Partials      121      121
Impacted Files Coverage Δ
cmd/notation/main.go 100.00% <100.00%> (ø)

... and 1 file with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

Two-Hearts
Two-Hearts approved these changes Jul 20, 2023
View reviewed changes
Copy link
Contributor

@Two-Hearts Two-Hearts left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

shizhMSFT
shizhMSFT approved these changes Jul 20, 2023
View reviewed changes
Copy link
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

priteshbandi
priteshbandi approved these changes Jul 20, 2023
View reviewed changes
Copy link
Contributor

@priteshbandi priteshbandi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@priteshbandi priteshbandi merged commit 0cc39b3 into notaryproject:main Jul 20, 2023
5 checks passed
@shizhMSFT shizhMSFT mentioned this pull request Jul 21, 2023
Merged
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@priteshbandi priteshbandi priteshbandi approved these changes

@shizhMSFT shizhMSFT shizhMSFT approved these changes

@Two-Hearts Two-Hearts Two-Hearts approved these changes

@gokarnm gokarnm Awaiting requested review from gokarnm gokarnm is a code owner

@justincormack justincormack Awaiting requested review from justincormack

@NiazFK NiazFK Awaiting requested review from NiazFK NiazFK is a code owner

@rgnote rgnote Awaiting requested review from rgnote rgnote is a code owner

@SteveLasker SteveLasker Awaiting requested review from SteveLasker

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Making NOTATION_USERNAME and NOTATION_PASSWORD secure
5 participants
@JeyJeyGao @codecov-commenter @priteshbandi @shizhMSFT @Two-Hearts