Document configopaque security expectations
#9274
Labels
Milestone
Comments
mx-psi
added this to the `go.opentelemetry.io/collector/config/configopaque` 1.0 milestone
|
Would a over-arching statement like:
be enough? |
|
@TylerHelmuth That makes sense to me. My main goal with this is that we have a guide if we have to make changes after 1.0 (e.g. what is bug, what should be kept as is) |
|
Filed #9295 adding the statement by @TylerHelmuth as well as some more information |
codeboten
pushed a commit
that referenced
this issue
Jan 16, 2024
Documents `configopaque` expectations. The intention is that it is clear that we can add interface implementations after 1.0 if not doing so would leak opaque values. Fixes #9274
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The aim of the
configopaquepackage is to have opaque types to prevent leakage of secrets in configuration. We should document under what situations do we aim to redact output, since it's kind of fuzzy right now (it used to be just for marshaling, now we also redact logs).It may also be that we miss some cases, would we be justified in making breaking changes if something like this happens again?
The text was updated successfully, but these errors were encountered: