airflow-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Kaxil Naik (JIRA)" <j...@apache.org>
Subject [jira] [Created] (AIRFLOW-2899) Sensitive data exposed when Exporting Variables
Date Tue, 14 Aug 2018 14:41:00 GMT
Kaxil Naik created AIRFLOW-2899:
-----------------------------------

             Summary: Sensitive data exposed when Exporting Variables
                 Key: AIRFLOW-2899
                 URL: https://issues.apache.org/jira/browse/AIRFLOW-2899
             Project: Apache Airflow
          Issue Type: Task
          Components: security
    Affects Versions: 1.9.0, 1.8.2, 1.10.0
            Reporter: Kaxil Naik
            Assignee: Kaxil Naik
             Fix For: 2.0.0
         Attachments: image-2018-08-14-15-39-17-680.png

Currently, the sensitive variable is hidden from being exposed in the Web UI. However, if
the UI is compromised, someone can export variables where all the sensitive variables are
exported in plain text format.

 !image-2018-08-14-15-39-17-680.png! 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message