Secure env vars in build log

Tommy Parnell's Avatar

Tommy Parnell

03 Jul, 2016 06:16 PM

Hello,

I have a suggestion. If someone has an environment variable that is secure, it would be good if it showed up in the build log as ******* instead of the actual characters. That way if someone went to the trouble to encrypt and secure a value, it is never accidentally exposed through the build log.

  1. Support Staff 1 Posted by Feodor Fitsner on 04 Jul, 2016 01:11 AM

    Feodor Fitsner's Avatar

    Hi Tommy,

    Thanks for the suggestion.

    The could be an issue with implementation as secure variables behave absolutely similar to regular variables. The purpose of "secure variable" is to protect sensitive data in pull request builds of OSS projects that can be initiated by an untrusted party.

    And current implementation is easy - variables marked as secure are just not set during PR builds.

  2. Ilya Finkelshteyn closed this discussion on 25 Aug, 2018 02:07 AM.

Comments are currently closed for this discussion. You can start a new one.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac