Open foot opened 7 years ago
We have no idea what potentially sensitive info a report may contain. After all, even a container name might be highly sensitive to some users. So the only sane option is to give a warning.
Note environment variables were turned off by default in #3139
You can get the current report by:
/api/report.json
The report contains sensitive data like:
TOKENS and passwords can be exposed as the report contains:
TOKEN=
,PASSWORD=
,SECRET=
,WHOKNOWSWHAT=
.--password=
and--token=
etcPossibles actions: