add: sensitive tag #105
add: sensitive tag #105
Conversation
|
/run pipeline |
|
/run pipeline |
|
/run pipeline |
|
/run pipeline |
|
Reason for skipping the upgrade test - Making the |
|
@ocofaigh |
|
/run pipeline |
|
/run pipeline |
|
/run pipeline |
|
@shemau Could you take a look please? Is it valid to mark all these as sensitive? |
There was a problem hiding this comment.
It seems that somewhere everything got turned around. It seems that the data (an input variable) may contain sensitive information.
IMHO this information is never output by the module.
So the requirement is probably to work through the various input options, in the main module, in the DA, in the examples IFF they pass secret input/variables to the secret submodule and make sure the information is marked as sensitive at the top.
If/when the whole object is marked sensitive there would be new restrictions on using ANY part of the object as a for_each block.
|
/run pipeline |
|
/run pipeline |
|
🎉 This PR is included in version 2.0.2 🎉 The release is available on:
Your semantic-release bot 📦🚀 |
Description
This PR adds sensitive tag to the data variable in the secret submodule.
https://github.ibm.com/GoldenEye/issues/issues/10858
Release required?
x.x.X)x.X.x)X.x.x)Release notes content
This PR adds sensitive tag to the data variable in the secret submodule.
Run the pipeline
If the CI pipeline doesn't run when you create the PR, the PR requires a user with GitHub collaborators access to run the pipeline.
Run the CI pipeline when the PR is ready for review and you expect tests to pass. Add a comment to the PR with the following text:
Checklist for reviewers
For mergers