From 363b3b3a88ba6f8a936b696ff30fd83f2ffb5e30 Mon Sep 17 00:00:00 2001 From: Jack Lloyd Date: Tue, 3 Oct 2017 01:21:31 -0400 Subject: Avoid leaking SONAR_TOKEN in the build log --- src/scripts/ci/travis.yml | 2 +- src/scripts/ci_build.py | 3 ++- 2 files changed, 3 insertions(+), 2 deletions(-) (limited to 'src/scripts') diff --git a/src/scripts/ci/travis.yml b/src/scripts/ci/travis.yml index d5982db85..397a88029 100644 --- a/src/scripts/ci/travis.yml +++ b/src/scripts/ci/travis.yml @@ -115,7 +115,7 @@ addons: sonarcloud: organization: "randombit-github" token: - secure: "MTveedl4eey6M4i12SdpXrCJs0eBerN+v+BzkUjCDiVSdHH+/m2wO4EJE/PoJAJyTPeZkxSLag4vCSebr0R1+ojBXUGW0Q1lnZ5xqrf3Vpb7Gvyavqc2kq4tFqVaU0nCF+sTm6dZMTTD7raxOSlP7fefp8yDVz7ddE1G9ZiT8rA=" + secure: "JYwDxEZyCJ1aKLjAYB9YlyyIRkjeaY48iYqcMhmidx6/ploWXMbUzVpv5plLFbMGgeMy9sqa2I7Pbo7u3OdcBbbsogGtk/jomnjiauuNS6KcCHEEcVjBILfadxGJPL9F8/0KbcS2vnPpz/jVlRp18Uemud0yGGXXcDaY471sA50=" coverity_scan: project: diff --git a/src/scripts/ci_build.py b/src/scripts/ci_build.py index 9c68d553f..1294921db 100755 --- a/src/scripts/ci_build.py +++ b/src/scripts/ci_build.py @@ -202,6 +202,7 @@ def run_cmd(cmd, root_dir): start = time.time() + cmd = [os.path.expandvars(elem) for elem in cmd] sub_env = os.environ.copy() sub_env['LD_LIBRARY_PATH'] = root_dir @@ -443,7 +444,7 @@ def main(args=None): sonar_config = os.path.join(root_dir, os.path.join(root_dir, 'src/build-data/sonar-project.properties')) cmds.append(['sonar-scanner', '-Dproject.settings=%s' % (sonar_config), - '-Dsonar.login=%s' % (os.getenv('SONAR_TOKEN'))]) + '-Dsonar.login=$SONAR_TOKEN']) if target in ['coverage']: -- cgit v1.2.3