mirror/ansible
1
0
Fork 0
mirror of https://github.com/ansible/ansible synced 2026-06-19 07:35:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

git: Document security risk involved in embedding user creds (#84963)

Browse Source 
* Provide warning to user about the potential risk involved in
  embedding username and password in git URL while checking out the source.

Fixes: #84557

Signed-off-by: Abhijeet Kasurde <Akasurde@redhat.com>
This commit is contained in:
Abhijeet Kasurde
2025-04-10 12:15:42 -07:00
committed by GitHub
parent 82e4b469f6
commit fcdf0b80b3
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
lib/ansible/modules/git.py
+4
View File
@@ -21,6 +21,10 @@ options:
repo:
description:
- git, SSH, or HTTP(S) protocol address of the git repository.
- Avoid embedding usernames and passwords within Git repository URLs.
This practice is insecure and can lead to unauthorized access to your repositories.
For secure authentication, configure SSH keys (recommended) or use a credential helper.
See Git documentation on SSH keys/credential helpers for instructions.
type: str
required: true
aliases: [ name ]