Closed ccheetham closed 1 year ago
The test.log published by the Samples pipeline includes the CloudFoundry credentials in plaintext. E.g:
test.log
... [2022-07-29 17:56:29,701] option: CloudFoundry username -> PLAIN_TEST_USER [2022-07-29 17:56:29,701] option: CloudFoundry password -> * ... command[1] cmd: cf login -a https://api.sys.longbeach.cf-app.com -u PLAIN_TEST_USER -p PLAIN_TEXT_PASSWORD ... ...
Credentials should be obscured. E.g.:
... [2022-07-29 17:56:29,701] option: CloudFoundry username -> *** [2022-07-29 17:56:29,701] option: CloudFoundry password -> *** ... command[1] cmd: cf login -a https://api.sys.longbeach.cf-app.com -u *** -p *** ... ...
The
test.logpublished by the Samples pipeline includes the CloudFoundry credentials in plaintext. E.g:Credentials should be obscured. E.g.: