Fixed: Issue report generation now redacts remoteConfigurations connection strings and keeps only the scheme (e.g. sls+https://), so credentials are not exposed in reports.

Co-authored-by: Copilot <copilot@github.com>
2026-04-30 12:58:35 +00:00 · 2026-04-25 17:09:43 +09:00
parent 1ef2955d00
commit b5d054f259
3 changed files with 19 additions and 1 deletions
--- a/src/lib
+++ b/src/lib
--- a/src/modules/features/SettingDialogue/PaneHatch.ts
+++ b/src/modules/features/SettingDialogue/PaneHatch.ts
@@ -137,6 +137,23 @@ export function paneHatch(this: ObsidianLiveSyncSettingTab, paneEl: HTMLElement,
                    pluginConfig.accessKey = REDACTED;
                    pluginConfig.secretKey = REDACTED;
                    const redact = (source: string) => `${REDACTED}(${source.length} letters)`;
+                    const toSchemeOnly = (uri: string) => {
+                        try {
+                            return `${new URL(uri).protocol}//`;
+                        } catch {
+                            const matched = uri.match(/^[A-Za-z][A-Za-z0-9+.-]*:\/\//);
+                            return matched?.[0] ?? REDACTED;
+                        }
+                    };
+                    pluginConfig.remoteConfigurations = Object.fromEntries(
+                        Object.entries(pluginConfig.remoteConfigurations || {}).map(([id, config]) => [
+                            id,
+                            {
+                                ...config,
+                                uri: toSchemeOnly(config.uri),
+                            },
+                        ])
+                    );
                    pluginConfig.region = redact(pluginConfig.region);
                    pluginConfig.bucket = redact(pluginConfig.bucket);
                    pluginConfig.pluginSyncExtendedSetting = {};