You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
After Terraform applying a jose_keyset resource the full contents of the keyset can be printed to the console when running terraform plan -destroy. Is there a way to stop this sensitive information from been printed out to the console?
As you can see the full contents including the private keys are displayed in the console. Arguably this could be ok as we may be about to delete them but it would be nice to avoid this from happening.
The text was updated successfully, but these errors were encountered:
Notably this is problematic if this information is stored to be presented for a human to review and approve. This would leave the information open for hours, maybe days. It could be abused during that time before the resource is destroyed.
After Terraform applying a
jose_keyset
resource the full contents of the keyset can be printed to the console when runningterraform plan -destroy
. Is there a way to stop this sensitive information from been printed out to the console?Here is an example:
Run:
terraform apply
Result:
...
Apply complete! Resources: 1 added, 0 changed, 0 destroyed.
Now run:
terraform plan -destroy
Result:
As you can see the full contents including the private keys are displayed in the console. Arguably this could be ok as we may be about to delete them but it would be nice to avoid this from happening.
The text was updated successfully, but these errors were encountered: