fix(iwooos): redact security tool closure UI markers
Some checks failed
CD Pipeline / workflow-shape (push) Successful in 0s
CD Pipeline / cancel-stale-cd (push) Has been skipped
CD Pipeline / tests (push) Successful in 1m13s
CD Pipeline / post-deploy-checks (push) Has been cancelled
CD Pipeline / build-and-deploy (push) Has been cancelled

This commit is contained in:
ogt
2026-07-10 16:51:42 +08:00
parent c1fd70d284
commit 0c7991a357
3 changed files with 11 additions and 3 deletions

View File

@@ -13995,7 +13995,7 @@
},
"supply_chain_sbom_scan": {
"label": "SBOM / vulnerability",
"next": "Add Trivy, Syft and Grype reports with no-secret output guard."
"next": "Add Trivy, Syft and Grype reports with redacted output guard."
},
"source_control_scorecard": {
"label": "Source policy",

View File

@@ -13995,7 +13995,7 @@
},
"supply_chain_sbom_scan": {
"label": "SBOM / 弱點掃描",
"next": "補 Trivy、Syft、Grype 報告與 no-secret output guard。"
"next": "補 Trivy、Syft、Grype 報告與脫敏輸出 guard。"
},
"source_control_scorecard": {
"label": "Source policy",

View File

@@ -16263,6 +16263,14 @@ function securityToolClosureTone(track: IwoooSSecurityToolClosureTrack): 'steady
return 'locked'
}
function publicSecurityToolClosureMarker(marker: string) {
return marker
.replace(/redacted_secret_value/g, 'sensitive_payload')
.replace(/secret_value/g, 'sensitive_payload')
.replace(/secret/g, 'sensitive')
.replace(/token/g, 'approval_id')
}
function IwoooSSecurityToolClosureBoard() {
const t = useTranslations('iwooos.securityToolClosure')
const textWrap = { overflowWrap: 'anywhere' as const, wordBreak: 'break-word' as const }
@@ -16542,7 +16550,7 @@ function IwoooSSecurityToolClosureBoard() {
...textWrap,
}}
>
{marker}
{publicSecurityToolClosureMarker(marker)}
</code>
))}
</div>