Local .git directory is embedded in the zip file generated by info
#7125
Comments
|
Thanks for reporting. Note that this runs counter to the idea of a minimal reproduction – you should not pack up your project, but create a new one which only includes the parts that show an issue. Other than that, @kamilkrzyskow, should we add |
|
Sure, I believe a workflow where people prefer to delete stuff from their project on a branch to later simply I'm a bit ignorant about what security sensitive info can be stored in the .git cache, perhaps names of branches so more of a privacy matter. Private keys should not be stored there or should they 🤔 The exclusion pattern should likely also include inner subprojects as they could also have .git directories. |
I'm also not entirely sure if we want the behavior that is asked for. We have some plugins we integrate with that demand a
It is impossible for us to know which plugin needs the git history without creating yet another inclusion list, which is impractical. Minimal reproductions with those plugin would cease to work.
Now that I would've forgotten 🫠 Great thinking. Another idea: What if we just print a warning that a git repository was included? I think this should be sufficient for the author to know that it's there and decide whether it's necessary or not. |
squidfunk
added
change request
|
I've relabelled this issue from "bug" to "change request". It is sensical for us to include the repository for the reasons stated, but I understand that this is not what everybody might want. |
|
Maybe this is a stretch, but let's check the names of plugins if they start with The idea with the warning is also good as we want to make people aware they are about to post their private repository data. This could be even an explicit input prompt to confirm saving the zip, and the user is aware what they're doing. Best to protect the project from angry developers claiming purposeful negligence with the info plugin. |
|
Hmm, I not really for using heuristics that are based on mere conventions. I'd say we go with the warning, as the author might also not want to include the git repository, albeit his reproduction contains one of the git plugins, e.g. when another bug is reported. Since the author is explicitly invoking the |
Sure… Please consider that devs may be lazy people and do that anyway to save time 😆 |
Maybe consider other stuff such as |
Nowadays, It could be considered that lazy people have no rights to their privacy. Could be seen with the example of the
That was my initial idea with the recent exclusion logic rewrite. But later when I rewrote it to a more "Pythonic" regex expression list, a discussion has begun on the validity of excluding every .dotfile. The results were that, in some cases those files could be necessary to properly debug the project, and also they are sort of proof that people didn't go the extra step to reproduce their issue from scratch, which in many cases could lead to a discovery in user error, basically removing the need to send us the file altogether. You can read the whole PR here: #6874 Your concerns have been heard and a proper warning will decrease the chance of people sending their private/sensitive data willy-nilly. |
|
Addressed in f724bb9 |
|
Released as part of 9.5.21. |
Context
When generating a bug report, more things than desired are leaked out.
Bug description
The zip file generated by the
infoplugin include the local.githistory.This must be filtered out, because it has potential security implications.
Related links
Reproduction
9.5.19-git-directory-in-zip.zip
Steps to reproduce
Open zip generated by info and acknowledge that it contains the
.gitdirectory.Browser
No response
Before submitting
The text was updated successfully, but these errors were encountered: