Closed briemarie closed 1 year ago
@christophercutajar I see you approved this. Will it be getting merged or was there another release that fixed the issue of the token being exposed in logs?
@kanata2 when you have time can you please review it yourself and merge it!
This PR is stale because it has been open 45 days with no activity. Remove stale label or comment or this will be closed in 10 days.
kanata2 I realize that my proposed solution wasn't the proper one, but has this been solved internally by your team in another PR?
No, we have not worked on it yet. If you think the labeling by GitHub Actions is inappropriate, please re-open it and reply to my comment.
@kanata2 Its ok that this PR is closed since it wasn't the right solution. Looks like the original issue https://github.com/slack-go/slack/issues/844 is still open so hopefully that gets addressed.
Debug logs are printing api tokens as part of the request message. Instead of printing the token, the token is transformed into a redacted string if it is not empty. If the token is empty, which is a useful piece of information that should be surfaced in the request, the empty string is transformed into a nil string to make it more obvious.
Pull Request Guidelines
These are recommendations for pull requests. They are strictly guidelines to help manage expectations.
PR preparation
[PASSED] Run
make pr-prep
from the root of the repository to run formatting, linting and tests.Should this be an issue instead - YES IT IS #844
API changes
Since API changes have to be maintained they undergo a more detailed review and are more likely to require changes.
Examples of API changes that do not meet guidelines: