You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Sensitive data, specifically agent token values, are being logged in the Terraform agent logs with log level as INFO. This poses a security risk as these tokens can be exploited if accessed by unauthorized users.
Steps to Reproduce
Run the Terraform scripts using the image hashicorp/tfc-agent:1.15.4 that include agent configurations with default log level of INFO.
Check the logs generated by the Terraform agent.
Observed that the agent token values are visible in the logs.
Expected Behavior
Agent token values should be masked or not logged at all to prevent exposure of sensitive information. As per the docs, INFO logs shouldn't contain any sensitive data.
Actual Behavior
Agent token values are currently visible in the logs.
The text was updated successfully, but these errors were encountered:
Description
Sensitive data, specifically agent token values, are being logged in the Terraform agent logs with log level as
INFO
. This poses a security risk as these tokens can be exploited if accessed by unauthorized users.Steps to Reproduce
hashicorp/tfc-agent:1.15.4
that include agent configurations with default log level ofINFO
.Expected Behavior
Agent token values should be masked or not logged at all to prevent exposure of sensitive information. As per the docs,
INFO
logs shouldn't contain any sensitive data.Actual Behavior
Agent token values are currently visible in the logs.
The text was updated successfully, but these errors were encountered: