Merge branch 'security-workhorse-artifacts-logs-scrubbing' into 'master'

Scrub artifacts signed URL in SendEntry logs See merge request gitlab-org/security/gitlab!1837

Merge branch 'security-workhorse-artifacts-logs-scrubbing' into 'master'
Scrub artifacts signed URL in SendEntry logs See merge request gitlab-org/security/gitlab!1837
f9557a80 · GitLab Release Tools Bot · c09574d0 · e9d2f771 · f9557a80
Commit f9557a80 authored Sep 27, 2021 by GitLab Release Tools Bot
Show whitespace changes
Inline Side-by-side

Showing with 2 additions and 1 deletion

workhorse/internal/artifacts/entry.go workhorse/internal/artifacts/entry.go +2 -1

No files found.
--- a/workhorse/internal/artifacts/entry.go
+++ b/workhorse/internal/artifacts/entry.go
@@ -14,6 +14,7 @@ import (
 	"syscall"
 	"gitlab.com/gitlab-org/labkit/log"
+	"gitlab.com/gitlab-org/labkit/mask"
 	"gitlab.com/gitlab-org/gitlab/workhorse/internal/helper"
 	"gitlab.com/gitlab-org/gitlab/workhorse/internal/senddata"
@@ -35,7 +36,7 @@ func (e *entry) Inject(w http.ResponseWriter, r *http.Request, sendData string)
 	log.WithContextFields(r.Context(), log.Fields{
 		"entry":   params.Entry,
-		"archive": params.Archive,
+		"archive": mask.URL(params.Archive),
 		"path":    r.URL.Path,
 	}).Print("SendEntry: sending")