Review SSH credential and secrets handling #90

New Issue

Open

opened 2026-05-28 22:32:51 +02:00 by parkel · 0 comments

parkel commented 2026-05-28 22:32:51 +02:00

Owner

Copy Link

Audit how private keys, known_hosts, webhook URLs, and other secrets are stored and displayed.

Acceptance criteria:

• Sensitive values are hidden from read-only users and minimized for staff views.
• Documentation explains filesystem permissions and backup implications.
• Any needed model/UI hardening issues are split out.

Audit how private keys, known_hosts, webhook URLs, and other secrets are stored and displayed. Acceptance criteria: - Sensitive values are hidden from read-only users and minimized for staff views. - Documentation explains filesystem permissions and backup implications. - Any needed model/UI hardening issues are split out.

parkel added this to the 1.6 milestone 2026-05-28 22:32:51 +02:00

parkel added the area: securitysecurity labels 2026-05-28 22:32:51 +02:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

issue-24-ui-label-cleanup

v1.2.0

v1.1.0

v1.0.0

Labels

Clear labels

area: future

Longer-term product direction.

area: observability

Metrics, history, and capacity insights.

area: policy

Backup policies, templates, and automation.

area: restore

Restore and recovery workflows.

area: security

Permissions, audit, and security hardening.

bugfix

Bug fixes and correctness work.

docs

Documentation and operator guidance.

feature

New functionality.

refactor

Internal restructuring without direct behavior changes.

release

Release preparation and publishing.

security

Security, permissions, and audit work.

No Label area: security security

Milestone

No items

No Milestone 1.6

Projects

Clear projects

No project

Assignees

Clear assignees

parkel

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: hippogrief/pobsync#90