Documentation
¶
Index ¶
- func GetSensitiveAnnotationsAndLabels() []string
- func UpdateSensitiveAnnotationsAndLabels(annotationsAndLabels []string)
- type DataScrubber
- func (ds *DataScrubber) AddCustomSensitiveRegex(words []string)
- func (ds *DataScrubber) AddCustomSensitiveWords(words []string)
- func (ds *DataScrubber) ContainsSensitiveWord(s string) bool
- func (ds *DataScrubber) ScrubAnnotationValue(annotationValue string) string
- func (ds *DataScrubber) ScrubSimpleCommand(cmdline []string) ([]string, bool)
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func GetSensitiveAnnotationsAndLabels ¶
func GetSensitiveAnnotationsAndLabels() []string
GetSensitiveAnnotationsAndLabels returns the list of sensitive annotations and labels.
func UpdateSensitiveAnnotationsAndLabels ¶
func UpdateSensitiveAnnotationsAndLabels(annotationsAndLabels []string)
UpdateSensitiveAnnotationsAndLabels adds new sensitive annotations or labels key to the list to redact.
Types ¶
type DataScrubber ¶
type DataScrubber struct {
Enabled bool
// RegexSensitivePatterns are custom regex patterns which are currently not exposed externally
RegexSensitivePatterns []*regexp.Regexp
// LiteralSensitivePatterns are custom words which use to match against
LiteralSensitivePatterns []string
// contains filtered or unexported fields
}
DataScrubber allows the agent to block cmdline arguments that match a list of predefined and custom words
func NewDefaultDataScrubber ¶
func NewDefaultDataScrubber() *DataScrubber
NewDefaultDataScrubber creates a DataScrubber with the default behavior: enabled and matching the default sensitive words
func (*DataScrubber) AddCustomSensitiveRegex ¶
func (ds *DataScrubber) AddCustomSensitiveRegex(words []string)
AddCustomSensitiveRegex adds custom sensitive regex on the DataScrubber object
func (*DataScrubber) AddCustomSensitiveWords ¶
func (ds *DataScrubber) AddCustomSensitiveWords(words []string)
AddCustomSensitiveWords adds custom sensitive words on the DataScrubber object
func (*DataScrubber) ContainsSensitiveWord ¶
func (ds *DataScrubber) ContainsSensitiveWord(s string) bool
ContainsSensitiveWord returns true if the given string contains a sensitive word
func (*DataScrubber) ScrubAnnotationValue ¶
func (ds *DataScrubber) ScrubAnnotationValue(annotationValue string) string
ScrubAnnotationValue obfuscate sensitive information from an annotation value.
func (*DataScrubber) ScrubSimpleCommand ¶
func (ds *DataScrubber) ScrubSimpleCommand(cmdline []string) ([]string, bool)
ScrubSimpleCommand hides the argument value for any key which matches a "sensitive word" pattern. It returns the updated cmdline, as well as a boolean representing whether it was scrubbed.
Source Files