openclaw/gogcli
openclaw/gogcli
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 3 Wiki Activity

fix(security): fully redact watch tokens in JSON output (#136) (thanks @paveg)
Some checks failed
ci / test (push) Has been cancelled
Details
ci / worker (push) Has been cancelled
Details
ci / windows (push) Has been cancelled
Details
ci / darwin-cgo-build (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Peter Steinberger 2026-03-08 03:10:49 +00:00
parent 754d75ea07
commit e5f0ee2446
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
internal/cmd/gmail_watch_cmds.go
View File

@ -391,7 +391,7 @@ func (c *GmailWatchServeCmd) Run(ctx context.Context, kctx *kong.Context, flags
func writeWatchState(ctx context.Context, state gmailWatchState, showSecrets bool) error {
displayState := state
if !showSecrets {
displayState = redactWatchStateSecrets(state)
displayState = redactWatchStateSecrets(state, outfmt.IsJSON(ctx))
}
if outfmt.IsJSON(ctx) {
return outfmt.WriteJSON(ctx, os.Stdout, map[string]any{"watch": displayState})
@ -442,13 +442,13 @@ func writeWatchState(ctx context.Context, state gmailWatchState, showSecrets boo
return nil
}
func redactWatchStateSecrets(state gmailWatchState) gmailWatchState {
func redactWatchStateSecrets(state gmailWatchState, full bool) gmailWatchState {
if state.Hook == nil || state.Hook.Token == "" {
return state
}
redacted := state
hook := *state.Hook
if len(hook.Token) > 4 {
if !full && len(hook.Token) > 4 {
hook.Token = hook.Token[:4] + "...(" + strconv.Itoa(len(hook.Token)) + " chars)"
} else {
hook.Token = "[REDACTED]"