helpful-secretary-93852
06/23/2023, 3:06 PMsshCommands:
type: command:remote:Command
properties:
connection:
host: ${debianserver.ipv4Address}
user: user
privateKey: ${AUTHORIZED_PRIVATE_KEY}
port: 22
create: echo ''
options:
additionalSecretOutputs:
- create
- connection
where "AUTHORIZED_PRIVATE_KEY" is a secret declared in the config-map of my github-ci pipeline (marked "secret": true)
but then the input (whereas the output is ok) is exposed to the state in plaintext
"inputs": {
"connection": {
"host": "1.1.1.1",
"port": 22,
"privateKey": "-----BEGIN OPENSSH PRIVATE KEY----- ...",
"user": "user"
},
"create": "echo ''"
},
billowy-army-68599
helpful-secretary-93852
06/23/2023, 3:10 PMbillowy-army-68599
helpful-secretary-93852
06/23/2023, 3:11 PMbillowy-army-68599
helpful-secretary-93852
06/23/2023, 3:13 PMbillowy-army-68599
helpful-secretary-93852
06/23/2023, 3:23 PM