+1 Thanks for raising this issue and taking care of this.
Thanks, Bharat On Thu, Mar 25, 2021 at 8:03 AM Mukul Kumar Singh <[email protected]> wrote: > Hi, > > > Recently, through one of the jiras(HDDS-4864), aws_secret_access_key was > committed into Ozone's source code. Secrets, gpg passphrases, passwords, > ssh private files should not be committed into Ozone source code as they > leak credentials into the source code. > > This issue will be solved via the following steps > > a) The above commit will be removed from the Ozone commit history. We > will force push to the Ozone master branch with this commit removed. > > b) A new commit hook/ CI check will be added to prevent this from > hapennening again. > > Please hold off on merging any new changes into Ozone until the commit > is removed from Apache commit history. > > Thanks, > > Mukul > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [email protected] > For additional commands, e-mail: [email protected] > >
