You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by "Kaxil Naik (JIRA)" <ji...@apache.org> on 2018/08/14 14:41:00 UTC

[jira] [Created] (AIRFLOW-2899) Sensitive data exposed when Exporting Variables

Kaxil Naik created AIRFLOW-2899:
-----------------------------------

             Summary: Sensitive data exposed when Exporting Variables
                 Key: AIRFLOW-2899
                 URL: https://issues.apache.org/jira/browse/AIRFLOW-2899
             Project: Apache Airflow
          Issue Type: Task
          Components: security
    Affects Versions: 1.9.0, 1.8.2, 1.10.0
            Reporter: Kaxil Naik
            Assignee: Kaxil Naik
             Fix For: 2.0.0
         Attachments: image-2018-08-14-15-39-17-680.png

Currently, the sensitive variable is hidden from being exposed in the Web UI. However, if the UI is compromised, someone can export variables where all the sensitive variables are exported in plain text format.

 !image-2018-08-14-15-39-17-680.png! 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)