The GitHub Actions job "Tests" on airflow.git/fix/azure-connection-secret-exposure has succeeded. Run started by GitHub user sunank200 (triggered by sunank200).
Head commit for run: 065b22c09a3329f1e901c2670c5199926c5d13a6 / Ankit Chaurasia <[email protected]> Add `access_key` and `connection_string` to DEFAULT_SENSITIVE_FIELDS Azure Blob Storage, Azure File Share, and Azure Data Lake store connection strings and shared access keys in the connection `extra` JSON under keys that were not matched by the existing sensitive field patterns. This allowed users with read-only Connection permissions (e.g. Viewer role) to retrieve these secrets in plaintext via the API. Adding `connection_string` and `access_key` to the default set ensures these values are automatically redacted in API responses and logs. Report URL: https://github.com/apache/airflow/actions/runs/21777735789 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
