feat: sanitize sensitive data in spec-renderer [KHCP-20404]

[sharmaadityaHQ]

Summary

This PR aims to implement mechanisms to sanitize sensitive data in spec-renderer.

Why?

Prevent data leakage, requested by customer (InteliiTrans).

Jira - https://konghq.atlassian.net/browse/KHCP-20404

Consuming app PR - https://github.com/kong-konnect/portal/pull/2333

Demo

Screen.Recording.2026-04-28.at.1.59.32.AM.mov

[adamdehaven]

needs a comment above the property

[adamdehaven]

needs a comment above the property

[adamdehaven]

need descriptions after ts-ignore

[kongponents-bot]

🔴 PR audit failed. 🔴

🔥 Renovate Security PRs detected.

There are 1 open renovate security PRs older than 3 days.

This PR cannot be merged until all renovate security PRs created more than 3 days ago are resolved.

🔥 PNPM Audit issues detected.

┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ fast-uri vulnerable to path traversal via              │
│                     │ percent-encoded dot segments                           │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ fast-uri                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <=3.1.0                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=3.1.1                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ .>@commitlint/cli>@commitlint/load>@commitlint/config- │
│                     │ validator>ajv>fast-uri                                 │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-q3j6-qgpj-74h6      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ fast-uri vulnerable to host confusion via              │
│                     │ percent-encoded authority delimiters                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ fast-uri                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <=3.1.1                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=3.1.2                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ .>@commitlint/cli>@commitlint/load>@commitlint/config- │
│                     │ validator>ajv>fast-uri                                 │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-v39h-62p7-jpjc      │
└─────────────────────┴────────────────────────────────────────────────────────┘
2 vulnerabilities found
Severity: 2 high

PR with those issues cannot be merged.

How to resolve:

• Check open renovate PRs for updates to the dependencies mentioned in the audit report
• try to update dependencies listed in the audit report to the latest versions
• use pnpm audit --fix to automatically fix issues

[kongponents-bot]

Install the preview package from this PR

@kong/spec-renderer@pr-860