You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I have a Dockerfile and entrypoint.sh that runs the event-classifier in a container. When I look at the container logs for event-classifier, I see that the DSN is logged with the password appearing in plaintext. This is how it looks:
Using postgres connection with password
postgresql+asyncpg://ton:plaintext@ton-node-1-postgres:5432/ton
postgresql://ton:plaintext@ton-node-1-postgres:5432/ton
INFO:main:Starting processing events from db
INFO:main:Creating pool of 4 workers
INFO:main:fetching unclassified traces...
INFO:main:Processing first batch of 10000 traces, queue size: 165
In other words, if I were to use the password (in this case, "plaintext") to log into the psql database, it would work.
It seems to me that the two DSN logs (postgresql+asyncpg: ... and postgresql: ...) are coming from this line and this line, respectively.
I assume these shouldn't be logged? In either case, can we go about masking this so the psql database credentials are not logged (at least in plaintext)
The text was updated successfully, but these errors were encountered:
I have a
Dockerfileandentrypoint.shthat runs theevent-classifierin a container. When I look at the container logs forevent-classifier, I see that the DSN is logged with the password appearing in plaintext. This is how it looks:In other words, if I were to use the password (in this case, "
plaintext") to log into the psql database, it would work.It seems to me that the two DSN logs (
postgresql+asyncpg: ...andpostgresql: ...) are coming from this line and this line, respectively.I assume these shouldn't be logged? In either case, can we go about masking this so the psql database credentials are not logged (at least in plaintext)
The text was updated successfully, but these errors were encountered: