Skip to content

fix: mask sensitive authentication tokens in console output#1558

Open
Abzaek wants to merge 1 commit into
git-bug:trunkfrom
Abzaek:fix/mask-sensitive-info-in-logs
Open

fix: mask sensitive authentication tokens in console output#1558
Abzaek wants to merge 1 commit into
git-bug:trunkfrom
Abzaek:fix/mask-sensitive-info-in-logs

Conversation

@Abzaek

@Abzaek Abzaek commented May 17, 2026

Copy link
Copy Markdown

Fixes #1545

The runBridgeAuthShow function prints authentication token values in plain text. This exposes sensitive credentials to anyone with access to terminal output or logs.

Fix: mask the token by showing only the first and last 4 characters, replacing the middle with asterisks (e.g., "abcd****wxyz" for a 12-character token). Short tokens are left unmasked to avoid ambiguity.

runBridgeAuthShow prints token values in plain text. This exposes
sensitive credentials to anyone with access to terminal output or logs.

Fix: mask the token by showing only the first and last 4 characters,
replacing the middle with asterisks (e.g., abcd****wxyz).

Fixes git-bug#1545
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

fix: potential exposure of sensitive information in logs

1 participant