This repository has been archived by the owner on Nov 11, 2019. It is now read-only.
all: remove any sensitive tokens from the master secret, which is meant to be semi-public #1550
Open
11 of 24 tasks
Labels
Comments
|
There is nothing left regarding relman projects here. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Currently in https://tools.taskcluster.net/secrets/repo%3Agithub.com%2Fmozilla-releng%2Fservices%3Abranch%3Amaster we have a lot of sensitive information.
However, that secret is meant to be shareable. Let's audit it, and remove any sensitive credentials.
Here is the ones I see as being potentially problematic:
common: CACHE_ACCESS_KEY_IDcommon: CACHE_SECRET_ACCESS_KEYcommon: DOCKER_PASSWORDcommon: CODECOV_ACCESS_TOKENcommon: BUGZILLA_TOKENcommon: PULSE_USERcommon: PULSE_PASSWORDcommon: TASKCLUSTER_CLIENT_IDcommon: TASKCLUSTER_ACCESS_TOKENcommon: NIX_CACHE_SECRET_KEYSreleng-tooltool: S3_REGIONS_ACCESS_KEY_IDreleng-tooltool: S3_REGIONS_SECRET_ACCESS_KEYreleng-treestatus: AUTH_CLIENT_IDreleng-treestatus: AUTH_CLIENT_SECRETuplift/backend: AUTH_CLIENT_IDuplift/backend: AUTH_CLIENT_SECRETstatic-analysis-bot: DATADOG_API_KEYstatic-analysis-bot: PHABRICATOR: api_key(staging)pulselistener: PULSE_USERpulselistener: PULSE_PASSWORDpulselistener: HOOKS: phabricator_token(staging)shipit-api: AUTH_CLIENT_IDshipit-api: AUTH_CLIENT_SECRETshipit-api: GITHUB_TOKENThe text was updated successfully, but these errors were encountered: