`flight_sql_client` should use an environment variable if arg: `password` is not supplied - for better security

voltrondata / sqlflite

An example Flight SQL Server implementation - with DuckDB and SQLite back-ends.

Apache License 2.0

205 stars 23 forks source link

`flight_sql_client` should use an environment variable if arg: `password` is not supplied - for better security #42

Closed prmoore77 closed 1 day ago

prmoore77 commented 3 months ago

The flight_sql_client executable should be modified to use an env var: FLIGHT_PASSWORD when the password argument is not supplied. This would prevent the password from showing up in the process list (ps) - and would be more secure.