Fix a bunch of potential security issues (secret leaking) (#1736) (#1750)

* Fix a bunch of potential security issues (secret leaking). * oneandone_server was already ok. * Add more parameters for pagerduty_alert. * Add more no_log=True. (cherry picked from commit 29bd5a9486) Co-authored-by: Felix Fontein <felix@fontein.de>
2026-05-07 05:42:50 +00:00 · 2021-02-08 16:22:39 +00:00
parent ab43b88d95
commit 25d5574089
25 changed files with 52 additions and 30 deletions
--- a/plugins/modules/net_tools/dnsmadeeasy.py
+++ b/plugins/modules/net_tools/dnsmadeeasy.py
@@ -546,7 +546,7 @@ def main():

    module = AnsibleModule(
        argument_spec=dict(
-            account_key=dict(required=True),
+            account_key=dict(required=True, no_log=True),
            account_secret=dict(required=True, no_log=True),
            domain=dict(required=True),
            sandbox=dict(default=False, type='bool'),
--- a/plugins/modules/net_tools/nios/nios_nsgroup.py
+++ b/plugins/modules/net_tools/nios/nios_nsgroup.py
@@ -317,7 +317,7 @@ def main():
        address=dict(required=True, ib_req=True),
        name=dict(required=True, ib_req=True),
        stealth=dict(type='bool', default=False),
-        tsig_key=dict(),
+        tsig_key=dict(no_log=True),
        tsig_key_alg=dict(choices=['HMAC-MD5', 'HMAC-SHA256'], default='HMAC-MD5'),
        tsig_key_name=dict(required=True)
    )