-
Notifications
You must be signed in to change notification settings - Fork 175
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: provide input to optionally mask output docker password #491
feat: provide input to optionally mask output docker password #491
Conversation
f01522b
to
0020a24
Compare
This will allow the user to specify an optional input to mask the Docker password from being leaked in workflow logs via either explicitly printing or running a job in debug mode. Since many users rely on the output, the default behaviour has been false to ensure this is not a breaking change. This also re-arranges the inputs throughout the code and in the GH action spec to be in alphabetical order as a styling improvement. Signed-off-by: danielwright@bitgo.com <danielwright@bitgo.com>
0020a24
to
4e598b2
Compare
As a general comment, I would prefer my change default to be |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for the contribution @therealdwright! A couple small wording tweaks, otherwise this looks good to me.
#### Login to Amazon ECR Private, then build and push a Docker image masking the password: | ||
|
||
> [!WARNING] | ||
> Setting mask-password to true will prevent the password GitHub output from being shared between separate jobs. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
> Setting mask-password to true will prevent the password GitHub output from being shared between separate jobs. | |
> Setting mask-password to true will prevent the password used to login to ECR from being shared between jobs. |
Mask the docker password to prevent it being printed to logs to std-out. This will prevent the | ||
password GitHub output from being shared between separate jobs. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Mask the docker password to prevent it being printed to logs to std-out. This will prevent the | |
password GitHub output from being shared between separate jobs. | |
Mask the docker password to prevent it from appearing in debug logs. This will prevent the | |
password used to login to Amazon ECR from being shared between jobs. |
Shoot, I pressed the wrong button. We'll tweak these in a follow-up PR and get a release out shortly. |
This commit addresses PR feedback left in aws-actions#491. There are no functional changes in this commit, simply minor wording changes to the readme.md and action.yaml Signed-off-by: danielwright@bitgo.com <danielwright@bitgo.com>
This will allow the user to specify an optional input to mask the Docker password from being leaked in workflow logs via either explicitly printing or running a job in debug mode. Since many users rely on the output, the default behaviour has been false to ensure this is not a breaking change.
This also re-arranges the inputs throughout the code and in the GH action spec to be in alphabetical order as a styling improvement.
Issue #
Closes #485
Description of changes:
mask-password
case and update existing tests