← Product Feedback

What problem could Octopus Deploy solve for you?

Product Feedback: Deployments

Categories

(thinking…)

Set-OctopusVariable to support -IsSensitive flag

The Set-OctopusVariable (and its counterparts for other scripting languages) should support an -IsSensitive flag such that if a variable is marked as sensitive it will not leak into a log.

16 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

James Webster shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Tim May commented  ·   ·  Flag as inappropriate

    Agreed. Our organisation uses KeePass as a store for protected secrets (usually passwords, but also API keys and other similar sensitive values. While we could copy these in to OD, we prefer the ability to use the scripting API and OD service account permissions to pull the correct (latest) value from the KeePass source-of-truth at deployment time. The downside, is that setting variables in script can not be marked sensitive, so we risk the values leaking into log statements.

  • Mani commented  ·   ·  Flag as inappropriate

    has there been any more discussion in this area? Or is there another way to accomplish this?

    Thanks!