When docker is used for building conan packages, entire docker command is included in the build log.
Therefore, sensitive information specified via CI environmental variables such as CONAN_LOGIN_USERNAME and CONAN_PASSWORD are also included in their pure form.
As this is a security issue, such sensitive information in the build logs has to be hidden or masked.
Environment Details
Conan Package Tools Version: 0.32.1
Operating System: Linux
Operation System Version: Ubuntu 16.04
Compiler+version: gcc-7
Docker image: conanio/gcc7
Conan version: conan 1.22.3
Python version: python 3.7.0
Steps to reproduce (Include if Applicable)
No spcial steps needed.
Build logs (Include if Available)
Azure pipelines build log file is attached.
CONAN_LOGIN_USERNAME and CONAN_PASSWORD has been masked. log.txt
Description of Problem, Request, or Question
When docker is used for building conan packages, entire docker command is included in the build log. Therefore, sensitive information specified via CI environmental variables such as CONAN_LOGIN_USERNAME and CONAN_PASSWORD are also included in their pure form. As this is a security issue, such sensitive information in the build logs has to be hidden or masked.
Environment Details
Steps to reproduce (Include if Applicable)
No spcial steps needed.
Build logs (Include if Available)
Azure pipelines build log file is attached. CONAN_LOGIN_USERNAME and CONAN_PASSWORD has been masked.
log.txt