[FLINK-30306] Audit utils can expose potentially sensitive information - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: kubernetes-operator-1.2.0
Fix Version/s: None
Component/s: Kubernetes Operator
Labels:
None

Description

I see events being logged by org.apache.flink.kubernetes.operator.listener.AuditUtils along the lines of ">>> Event | Info | SPECCHANGED | UPGRADE change(s) detected". This logs the entire new spec, which can contain sensitive information that has been injected from a Kubernetes secret.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Alexis Sarda-Espinosa

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 05/Dec/22 16:27

Updated:: 22/Feb/23 13:06