Skip to content

Redaction manipulates actual secrets in debug mode #334

New issue
New issue
Open
Open
Redaction manipulates actual secrets in debug mode#334
Labels
bugSomething isn't workinggood first issueGood for newcomers
Milestone
Bug Fixes
@dkundel

Description

@dkundel
dkundel
opened on Aug 17, 2021

Actual Behavior

If you deploy a project with -l debug that contains any of these keywords here as names of environment variables

serverless-toolkit/packages/twilio-run/src/utils/debug.ts

Lines 20 to 28 in 250165b

'authToken',
'apiSecret',
'username',
'password',
'cookies',
'AUTH_TOKEN',
'API_SECRET',
'TWILIO_AUTH_TOKEN',
'TWILIO_API_SECRET',

The environments variables will be uploaded as [REDACTED] instead.

Expected Behavior

The environment variables get uploaded the exact way they are referenced but the logs show them as [REDACTED].

How to Reproduce

twilio serverless:init sample
cd sample
echo "API_SECRET=something" >> .env
twilio serverless:deploy -l debug
twilio serverless:env:get --key API_SECRET
# shows [REDACTED]
twilio serverless:deploy
twilio serverless:env:get --key API_SECRET
# shows actual value something
# both should be "something"

Versions

Node.js: 12.22.1
@twilio/runtime-handler: 1.1.3
@twilio-labs/plugin-serverless: 2.2.2

Metadata

Metadata

Assignees

No one assigned

    Labels

    bugSomething isn't workinggood first issueGood for newcomers

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions