Open theory opened 3 years ago
We should teach the Snowflake engine to redact any _pwd
param values in target URI displays, and ideally support reading them from the SnowSQL config file and environment variables so that they don't have to be in the URI at all.
This works for the SNOWSQL client, however the string needs to be in the Engine string or it returns the error: "cannot marshal private file". Additionally, sqitch is printing the passphrase in plaintext in its logs. Example:
Originally posted by @jperkelens in https://github.com/sqitchers/sqitch/issues/318#issuecomment-825920430