You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by "Kaxil Naik (JIRA)" <ji...@apache.org> on 2019/05/02 10:18:00 UTC

[jira] [Updated] (AIRFLOW-2899) Sensitive data exposed when Exporting Variables

     [ https://issues.apache.org/jira/browse/AIRFLOW-2899?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Kaxil Naik updated AIRFLOW-2899:
--------------------------------
    Labels: variable  (was: )

> Sensitive data exposed when Exporting Variables
> -----------------------------------------------
>
>                 Key: AIRFLOW-2899
>                 URL: https://issues.apache.org/jira/browse/AIRFLOW-2899
>             Project: Apache Airflow
>          Issue Type: Task
>          Components: security
>    Affects Versions: 1.8.2, 1.9.0, 1.10.0
>            Reporter: Kaxil Naik
>            Priority: Major
>              Labels: variable
>             Fix For: 2.0.0
>
>         Attachments: image-2018-08-14-15-39-17-680.png
>
>
> Currently, the sensitive variable is hidden from being exposed in the Web UI. However, if the UI is compromised, someone can export variables where all the sensitive variables are exported in plain text format.
>  !image-2018-08-14-15-39-17-680.png! 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)