mirror of
https://github.com/woodpecker-ci/woodpecker.git
synced 2024-11-14 14:01:26 +00:00
5742e8695c
as this secrets have to low entropy they can not be valid secrets and e.g. make log only unredable just add a secret with value `a` to a repo an run a pipeline ... --- *Sponsored by Kithara Software GmbH*
37 lines
1.1 KiB
Go
37 lines
1.1 KiB
Go
// Copyright 2022 Woodpecker Authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package shared
|
|
|
|
import "strings"
|
|
|
|
func NewSecretsReplacer(secrets []string) *strings.Replacer {
|
|
var oldnew []string
|
|
for _, old := range secrets {
|
|
old = strings.TrimSpace(old)
|
|
if len(old) <= 3 {
|
|
continue
|
|
}
|
|
// since replacer is executed on each line we have to split multi-line-secrets
|
|
for _, part := range strings.Split(old, "\n") {
|
|
if len(part) == 0 {
|
|
continue
|
|
}
|
|
oldnew = append(oldnew, part)
|
|
oldnew = append(oldnew, "********")
|
|
}
|
|
}
|
|
|
|
return strings.NewReplacer(oldnew...)
|
|
}
|