This morning, I discovered that the GitHub Actions jobs were logging our UCSB API keys, and those logs are view-able by anyone with a GitHub account, regardless of their affiliation with this organization.
(It's essentially public information now).
This change removes such logger statements so they can no longer appear in GitHub Actions logs and become public information. You can verify this by searching the logs on this commit for apikey. The only two results you should find are the ones that mention this branch name.
This morning, I discovered that the GitHub Actions jobs were logging our UCSB API keys, and those logs are view-able by anyone with a GitHub account, regardless of their affiliation with this organization.
(It's essentially public information now).
This change removes such logger statements so they can no longer appear in GitHub Actions logs and become public information. You can verify this by searching the logs on this commit for
apikey. The only two results you should find are the ones that mention this branch name.