[windows] Mark sensitive values as secret #9906
Comments
taylor-swanson
added
enhancement
|
Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform) |
|
Pinging @elastic/elastic-agent-data-plane (Team:Elastic-Agent-Data-Plane) |
|
@cmacknz @pierrehilbert any reason why the data plane team is mentioned as the codeowner here https://github.com/elastic/integrations/blob/ca7078d194b387d0d390e996a09dcddedc84b491/.github/CODEOWNERS#L352C1-L353C1 ? |
|
We discussed with @nfritts a month ago and his team should be the owner. |
|
@pierrehilbert let's make sure we have a pr for this then. @nfritts what's the right github team we should use then? |
|
Should we remove the data plane team from that ownership file. I think majority of the inputs are security owned. |
|
Yes we should, we are waiting to have a confirmation from @nfritts about the team we should add instead of the Data Plane team to open a PR. |
|
Even though the upgrade to a most recent package-spec is something we should do, I wonder if we want to keep the httpjson based Splunk input. @jamiehynds what do you think? Would be something we could remove, also from the other couple integrations that have it? |
There are two configuration values flagged in #8610 that need to be marked as secret:
In order to support secrets variables and validation, the package-spec version of the integration will need to be raised to 3.0.2 or higher. As a note, migrating to package-spec 3.0 or higher will more than likely trigger validation errors for fields. One of the main reasons why windows is being held back at pkg-spec 1.0.0 is due to the presence of dynamic metrics fields in the perfmon data stream. This is no longer allowed in newer versions of pkg-spec.
The text was updated successfully, but these errors were encountered: