runner icon indicating copy to clipboard operation
runner copied to clipboard
verified publisher icon actions

Unable to hide the inputs in the first step of the workflow_call job

Open arununzer opened this issue 2 years ago • 5 comments

Describe the bug A clear and concise description of what the bug is.

Unable to hide the inputs in the first step of the workflow_call job

To Reproduce Steps to reproduce the behavior:

  1. Go to 'Actions tab after building a sample workflow call job - reusable workflow'
  2. Run 'the sample action'
  3. See error

Expected behavior A clear and concise description of what you expected to happen.

able to hide the inputs in the first step of the workflow_call job

Runner Version and Platform

Version of your runner? 2.311.0

OS of the machine running the runner? OSX/Windows/Linux/... ubuntu 22.04 self hosted runner

What's not working?

Please include error messages and screenshots. Screenshot (4)

Job Log Output

Runner and Worker's Diagnostic Logs

 Inputs
    CostCenter: 10000
    LegalEntity: GmbH
    Project: Infra
    Team: Platform Engineering
    env: int
    secret_name: infra/arun-test2
    secret_value: user=arun,pass=wi;hf&0(^%$!d@YLn7

arununzer avatar Nov 15 '23 15:11 arununzer

Any update on this as its quite urgent .. Thanks :)

arununzer avatar Nov 16 '23 08:11 arununzer

Same issue, even using the reusable actions from marketplace not working:

`
Mask-Secrets: name: Mask secret ${{ inputs.name }} runs-on: ubuntu-latest

steps:
  - name: Hide the inputs values to keep them private in the logs when running this workflow
    uses: levibostian/action-hide-sensitive-inputs@v1
    with:
      exclude_inputs: operation, name, aws_region, environment, product

`

However, this action does the job in other cases, in not reusable workflows.

rgrygorovych avatar Feb 07 '24 06:02 rgrygorovych

@arununzer check your password leakage secret_value: user=arun,pass=wi;h***********

;)

rgrygorovych avatar Feb 07 '24 06:02 rgrygorovych

btw, levibostian/action-hide-sensitive-inputs is only properly working with workflow_dispatch and not workflow_call :(

rgrygorovych avatar Feb 07 '24 06:02 rgrygorovych

This definitely needs fixed. We have secrets that would get shown because of this. Been working around it with actions for a long time now. It just muddies the reusability across repos and opens up a lot of copy paste that can cause errors and is a lot to maintain.

tateexon avatar Jun 27 '24 13:06 tateexon

This issue is stale because it has been open 365 days with no activity. Remove stale label or comment or this will be closed in 15 days.

github-actions[bot] avatar Aug 18 '25 00:08 github-actions[bot]

This issue was closed because it has been stalled for 15 days with no activity.

github-actions[bot] avatar Sep 08 '25 00:09 github-actions[bot]