A custom credentials object that does not implement the fmt.Stringer interface may leak sensitive information (e.g., credentials) via logs.
{ "review_status": "REVIEWED", "url": "https://pkg.go.dev/vuln/GO-2023-2137" }
{ "imports": [ { "path": "github.com/ydb-platform/ydb-go-sdk/v3", "symbols": [ "Connector", "Driver.Close", "Driver.Coordination", "Driver.Discovery", "Driver.Ratelimiter", "Driver.Scheme", "Driver.Scripting", "Driver.Table", "Driver.Topic", "Driver.With", "IsTimeoutError", "IsTransportError", "MustConnector", "MustOpen", "New", "Open", "Unwrap", "WithAccessTokenCredentials", "WithAnonymousCredentials", "WithCertificatesFromFile", "WithRequestType", "WithTraceID", "connect", "initOnce.Close", "initOnce.Init", "sqlDriver.OpenConnector" ] }, { "path": "github.com/ydb-platform/ydb-go-sdk/v3/credentials", "symbols": [ "NewAccessTokenCredentials", "NewAnonymousCredentials", "NewStaticCredentials", "WithSourceInfo", "staticCredentialsConfig.Endpoint", "staticCredentialsConfig.GrpcDialOptions" ] }, { "path": "github.com/ydb-platform/ydb-go-sdk/v3/internal/balancer", "symbols": [ "Balancer.Invoke", "Balancer.NewStream", "Balancer.clusterDiscovery", "Balancer.wrapCall", "New" ] }, { "path": "github.com/ydb-platform/ydb-go-sdk/v3/internal/conn", "symbols": [ "WithAfterFunc" ] }, { "path": "github.com/ydb-platform/ydb-go-sdk/v3/internal/credentials", "symbols": [ "AccessToken.String", "Anonymous.String", "NewAccessTokenCredentials", "NewAnonymousCredentials", "NewStaticCredentials", "Static.String", "WithSourceInfo" ] } ] }