fix(logging): reduce verbose logging for security. Fixes #12293 #12295
Conversation
|
Hi @JerT33. Thanks for your PR. I'm waiting for a kubeflow member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
|
🚫 This command cannot be processed. Only organization members or owners can use the commands. |
|
/ok-to-test |
|
Approvals successfully granted for pending runs. |
droctothorpe
force-pushed
the
feat/remove_verbose_logging
branch
from
74c5f10 to
07eb3bf
Compare
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
from
03685c8 to
0ad2011
Compare
droctothorpe
force-pushed
the
feat/remove_verbose_logging
branch
from
4ed4ef7 to
2c5ec31
Compare
|
Thanks for the incorporating the feedback, @JerT33. /lgtm |
|
Looks like there are some test errors. Also, can you please squash your commits to just one commit. Thanks! |
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
4 times, most recently
from
68343b2 to
734a1fb
Compare
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
2 times, most recently
from
36e9098 to
3156864
Compare
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
2 times, most recently
from
e07d494 to
d240490
Compare
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
from
bce8f61 to
0e92da3
Compare
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
from
0e92da3 to
d240490
Compare
|
Looks like you have some merge conflicts that need to be addressed in order to rebase, @JerT33. |
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
2 times, most recently
from
04f26e0 to
999f65d
Compare
Signed-off-by: JerT33 <[email protected]> add back additionalinfo as optional Signed-off-by: JerT33 <[email protected]> make k8s error logs more generic to protect against xss Signed-off-by: JerT33 <[email protected]> remove verbose logging for minio get artifact handler Signed-off-by: JerT33 <[email protected]> sanitize rather than remove resource names + revert backend error logs Signed-off-by: JerT33 <[email protected]> fix typo + add invalid resource name tests Signed-off-by: JerT33 <[email protected]> add valid namespace check for tensorboard Signed-off-by: JerT33 <[email protected]> update pipeline upload server responses + log verbose error messages Signed-off-by: JerT33 <[email protected]> remove error wrap from backend error logs Signed-off-by: JerT33 <[email protected]> minor updates to satisfy pre commit checks Signed-off-by: JerT33 <[email protected]> update tensor board file to ensure namespace is a str Signed-off-by: JerT33 <[email protected]> update frontend code format + backend test cases Signed-off-by: JerT33 <[email protected]> update pipeline upload test cases to pass pre commit Signed-off-by: JerT33 <[email protected]> fix minor merge typo Signed-off-by: JerT33 <[email protected]> fix minor merge typo Signed-off-by: JerT33 <[email protected]>
JerT33
force-pushed
the
feat/remove_verbose_logging
branch
from
999f65d to
e8b1b9b
Compare
|
/lgtm |
|
/unhold |
|
/approve |
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: zazulam The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
3 participants
Description of your changes:
Sanitizes error logging in pipeline upload and K8s pod API endpoints within the frontend service. This help prevents information disclosure by returning generic error responses, while preserving debug information for troubleshooting. This also helps prevent against the ability to run scripts as shown in #12293
Fixes #12293
Checklist: