Only print Auth token when in Verbose mode #275

gllebede · 2024-09-23T10:20:33Z

It looks like the intention was to print the Auth token only when in Verbose mode, taking into account previous line.

Printing Auth PAT to console in normal mode may expose PAT to a party with malicious intent.

jwittner · 2024-09-23T17:01:18Z

UnitySetup/UnitySetup.psm1


        Write-Verbose "Summary"
-        Write-Output $upmConfigs
+        Write-Verbose $upmConfigs


I think we should either skip the summary or strip the tokens from the objects. Even in verbose it's not good practice.

As a note - Write-Output is like adding it to the return value. It'll only get printed if the caller doesn't capture the output. That said, I agree that I think the author was trying to print this out for the summary not return it.

Only print Auth token when in Verbose mode

4c82560

jwittner requested changes Sep 23, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Only print Auth token when in Verbose mode #275

Only print Auth token when in Verbose mode #275

Uh oh!

gllebede commented Sep 23, 2024

Uh oh!

jwittner Sep 23, 2024

Uh oh!

jwittner Sep 23, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Only print Auth token when in Verbose mode #275

Are you sure you want to change the base?

Only print Auth token when in Verbose mode #275

Uh oh!

Conversation

gllebede commented Sep 23, 2024

Uh oh!

jwittner Sep 23, 2024

Choose a reason for hiding this comment

Uh oh!

jwittner Sep 23, 2024

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants