Open abc3 opened 6 months ago
@supabase/dashbit, if there is any way to continue keeping secrets in funs across upgrades, I would be happy to hear about it, as I haven’t found any safe method
Other approaches to consider:
@derive {Inspect, only: []}
defstruct :secret
To avoid logging sensitive data (passwords, secrets, etc.), we keep it internally as anonymous functions
fn -> some_secret end
. However, during hot upgrades, old links to these funs can become invalid, so this PR introduces a new approach by turning sensitive data into binary.The PR also includes the HotUpgrade module, which will replace existing encoded secrets, currently cached or residing within the
:poolboy
supervisor, with this new method