Skip to content

fix(security): redact secret patterns from CLI log and error output #672

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
WuKongAI-CMU wants to merge 6 commits into from
Closed

fix(security): redact secret patterns from CLI log and error output #672

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
e3468b7
fix(security): redact secret patterns from CLI log and error output
WuKongAI-CMU Mar 22, 2026
612ed38
fix(security): cover runCapture and additional key patterns
WuKongAI-CMU Mar 23, 2026
ea87861
runner: tighten error redaction and extend redact tests
WuKongAI-CMU Mar 25, 2026
544c71b
fix(security): redact stack traces and align error-output test
WuKongAI-CMU Mar 25, 2026
7f135ce
chore(security): harden bearer redaction edge cases
WuKongAI-CMU Mar 26, 2026
a2a5465
Merge branch 'main' into security/redact-cli-secrets
cv Apr 1, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
50 changes: 46 additions & 4 deletions bin/lib/runner.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ function run(cmd, opts = {}) {
env: { ...process.env, ...opts.env },
});
if (result.status !== 0 && !opts.ignoreError) {
console.error(` Command failed (exit ${result.status}): ${cmd.slice(0, 80)}`);
console.error(` Command failed (exit ${result.status}): ${redact(cmd).slice(0, 80)}`);
process.exit(result.status || 1);
}
return result;
Expand All @@ -37,7 +37,7 @@ function runInteractive(cmd, opts = {}) {
env: { ...process.env, ...opts.env },
});
if (result.status !== 0 && !opts.ignoreError) {
console.error(` Command failed (exit ${result.status}): ${cmd.slice(0, 80)}`);
console.error(` Command failed (exit ${result.status}): ${redact(cmd).slice(0, 80)}`);
process.exit(result.status || 1);
}
return result;
Expand All @@ -54,10 +54,52 @@ function runCapture(cmd, opts = {}) {
}).trim();
} catch (err) {
if (opts.ignoreError) return "";
throw err;
throw redactError(err);
}
}

/**
* Redact known secret patterns from a string to prevent accidental leaks
* in CLI log and error output. Covers NVIDIA API keys, bearer tokens,
* generic API key assignments, and base64-style long tokens.
*/
const SECRET_PATTERNS = [
/nvapi-[A-Za-z0-9_-]{10,}/g,
/nvcf-[A-Za-z0-9_-]{10,}/g,
/ghp_[A-Za-z0-9_-]{10,}/g,
/(?<=Bearer\s+)[A-Za-z0-9_.+/=-]{10,}/gi,
/(?<=(?:_KEY|API_KEY|SECRET|TOKEN|PASSWORD|CREDENTIAL)[=: ]['"]?)[A-Za-z0-9_.+/=-]{10,}/gi,
];

function redact(str) {
if (typeof str !== "string") return str;
let out = str;
for (const pat of SECRET_PATTERNS) {
out = out.replace(pat, (match) => match.slice(0, 4) + "*".repeat(Math.min(match.length - 4, 20)));
}
return out;
}

/**
* Redact sensitive fields on an error object before surfacing it to callers.
* NOTE: this mutates the original error instance in place.
*/
function redactError(err) {
if (!err || typeof err !== "object") return err;
const originalMessage = typeof err.message === "string" ? err.message : null;
if (typeof err.message === "string") err.message = redact(err.message);
if (typeof err.cmd === "string") err.cmd = redact(err.cmd);
if (typeof err.stdout === "string") err.stdout = redact(err.stdout);
if (typeof err.stderr === "string") err.stderr = redact(err.stderr);
if (Array.isArray(err.output)) {
err.output = err.output.map((value) => (typeof value === "string" ? redact(value) : value));
}
if (originalMessage && typeof err.stack === "string") {
err.stack = err.stack.replaceAll(originalMessage, err.message);
}
return err;
}
Comment thread
coderabbitai[bot] marked this conversation as resolved.

/**
* Shell-quote a value for safe interpolation into bash -c strings.
* Wraps in single quotes and escapes embedded single quotes.
Expand Down Expand Up @@ -85,4 +127,4 @@ function validateName(name, label = "name") {
return name;
}

module.exports = { ROOT, SCRIPTS, run, runCapture, runInteractive, shellQuote, validateName };
module.exports = { ROOT, SCRIPTS, redact, run, runCapture, runInteractive, shellQuote, validateName };
146 changes: 146 additions & 0 deletions test/runner.test.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -170,7 +170,153 @@ describe("validateName", () => {
});
});

describe("redact", () => {
it("masks NVIDIA API keys", () => {
const { redact } = require(runnerPath);
expect(redact("key is nvapi-abc123XYZ_def456")).toBe("key is nvap******************");
});

it("masks NVCF keys", () => {
const { redact } = require(runnerPath);
expect(redact("nvcf-abcdef1234567890")).toBe("nvcf*****************");
});

it("masks bearer tokens", () => {
const { redact } = require(runnerPath);
expect(redact("Authorization: Bearer eyJhbGciOiJIUzI1NiJ9.payload")).toBe(
"Authorization: Bearer eyJh********************"
);
});

it("masks key assignments in commands", () => {
const { redact } = require(runnerPath);
expect(redact("export NVIDIA_API_KEY=nvapi-realkey12345")).toContain("nvap");
expect(redact("export NVIDIA_API_KEY=nvapi-realkey12345")).not.toContain("realkey12345");
});

it("masks variables ending in _KEY", () => {
const { redact } = require(runnerPath);
const output = redact('export SERVICE_KEY="supersecretvalue12345"');
expect(output).not.toContain("supersecretvalue12345");
expect(output).toContain('export SERVICE_KEY="supe');
});

it("masks bare GitHub personal access tokens", () => {
const { redact } = require(runnerPath);
const output = redact("token ghp_abcdefghijklmnopqrstuvwxyz1234567890");
expect(output).toContain("ghp_");
expect(output).not.toContain("abcdefghijklmnopqrstuvwxyz1234567890");
});

it("masks bearer tokens case-insensitively", () => {
const { redact } = require(runnerPath);
expect(redact("authorization: bearer someBearerToken")).toContain("some****");
expect(redact("authorization: bearer someBearerToken")).not.toContain("someBearerToken");
expect(redact("AUTHORIZATION: BEARER someBearerToken")).toContain("some****");
expect(redact("AUTHORIZATION: BEARER someBearerToken")).not.toContain("someBearerToken");
});

it("masks bearer tokens with repeated spacing", () => {
const { redact } = require(runnerPath);
const output = redact("Authorization: Bearer someBearerToken");
expect(output).toContain("some****");
expect(output).not.toContain("someBearerToken");
});

it("masks quoted assignment values", () => {
const { redact } = require(runnerPath);
const output = redact('API_KEY="secret123abc"');
expect(output).not.toContain("secret123abc");
expect(output).toContain('API_KEY="sec');
});

it("masks multiple secrets in one string", () => {
const { redact } = require(runnerPath);
const output = redact("nvapi-firstkey12345 nvapi-secondkey67890");
expect(output).not.toContain("firstkey12345");
expect(output).not.toContain("secondkey67890");
expect(output).toContain("nvap******************");
});

it("leaves non-secret strings untouched", () => {
const { redact } = require(runnerPath);
expect(redact("docker run --name my-sandbox")).toBe("docker run --name my-sandbox");
expect(redact("openshell sandbox list")).toBe("openshell sandbox list");
});

it("handles non-string input gracefully", () => {
const { redact } = require(runnerPath);
expect(redact(null)).toBe(null);
expect(redact(undefined)).toBe(undefined);
expect(redact(42)).toBe(42);
});
});

describe("regression guards", () => {
it("runCapture redacts secrets before rethrowing errors", () => {
const originalExecSync = childProcess.execSync;
childProcess.execSync = () => {
throw new Error(
'command failed: export SERVICE_KEY="supersecretvalue12345" ghp_abcdefghijklmnopqrstuvwxyz1234567890'
);
};

try {
delete require.cache[require.resolve(runnerPath)];
const { runCapture } = require(runnerPath);

let error;
try {
runCapture("echo nope");
} catch (err) {
error = err;
}

expect(error).toBeInstanceOf(Error);
expect(error.message).toContain("ghp_");
expect(error.message).not.toContain("supersecretvalue12345");
expect(error.message).not.toContain("abcdefghijklmnopqrstuvwxyz1234567890");
} finally {
childProcess.execSync = originalExecSync;
delete require.cache[require.resolve(runnerPath)];
}
});

it("runCapture redacts execSync error cmd/output fields", () => {
const originalExecSync = childProcess.execSync;
childProcess.execSync = () => {
const err = new Error("command failed");
err.cmd = "echo nvapi-aaaabbbbcccc1111 && echo ghp_abcdefghijklmnopqrstuvwxyz123456";
err.output = ["stdout: nvapi-aaaabbbbcccc1111", "stderr: PASSWORD=secret123456"];
throw err;
};

try {
delete require.cache[require.resolve(runnerPath)];
const { runCapture } = require(runnerPath);

let error;
try {
runCapture("echo nope");
} catch (err) {
error = err;
}

expect(error).toBeDefined();
expect(error).toBeInstanceOf(Error);
expect(error.cmd).not.toContain("nvapi-aaaabbbbcccc1111");
expect(error.cmd).not.toContain("ghp_abcdefghijklmnopqrstuvwxyz123456");
expect(Array.isArray(error.output)).toBe(true);
expect(error.output[0]).not.toContain("nvapi-aaaabbbbcccc1111");
expect(error.output[1]).not.toContain("secret123456");
expect(error.output[0]).toContain("****");
expect(error.output[1]).toContain("****");
} finally {
childProcess.execSync = originalExecSync;
delete require.cache[require.resolve(runnerPath)];
}
});
Comment thread
coderabbitai[bot] marked this conversation as resolved.

it("nemoclaw.js does not use execSync", () => {
const src = fs.readFileSync(
path.join(import.meta.dirname, "..", "bin", "nemoclaw.js"),
Expand Down