Skip to content

Comments

Add automatic sensitive data redaction to response formatters#81

Draft
Copilot wants to merge 3 commits intomainfrom
copilot/fix-code-leaks
Draft

Add automatic sensitive data redaction to response formatters#81
Copilot wants to merge 3 commits intomainfrom
copilot/fix-code-leaks

Conversation

Copy link

Copilot AI commented Feb 20, 2026
edited
Loading

Overview

Security audit found no code leaks. Added defense-in-depth by implementing automatic redaction of sensitive fields in all response formatters to prevent accidental exposure through logging or error messages.

Changes

Sensitive Data Redaction

  • Modified: etherscan-common.js, etherscan_common.py, query-validator-rewards.js, query-validator-rewards.py
  • Redacts fields matching: apikey, token, password, secret, authorization, etc.
  • Recursive processing of nested objects and arrays
  • Case-insensitive field matching

Example:

const response = { 
  status: "1", 
  apikey: "ZITG8EMXRFSWU2CDTNT4XEI7GDYB2JBMGD",
  data: { token: "secret-value", result: "success" }
};

console.log(formatResponse(response));
// Output: {"status":"1","apikey":"[REDACTED]","data":{"token":"[REDACTED]","result":"success"}}

Test Coverage

  • Added 3 test cases in etherscan-common.test.js verifying redaction of single, multiple, and nested sensitive fields
  • All 128 tests pass

Documentation

  • New: SECURITY_AUDIT_REPORT.md - Complete audit findings
  • New: SECURITY_IMPROVEMENTS.md - Implementation details and rationale
  • Updated: README.md - Links to security documentation

Verification

  • CodeQL: 0 vulnerabilities
  • No breaking changes - fully backward compatible

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

Copilot AI and others added 2 commits February 20, 2026 10:51
@Kushmanmb
Add sensitive data redaction to formatResponse functions
2d31a2a 
Co-authored-by: Kushmanmb <193178375+Kushmanmb@users.noreply.github.com>
@Kushmanmb
Complete security audit documentation and improvements
2caae8a 
Co-authored-by: Kushmanmb <193178375+Kushmanmb@users.noreply.github.com>
Copilot AI changed the title [WIP] Audit for code leaks and implement fixes Add automatic sensitive data redaction to response formatters Feb 20, 2026
@Kushmanmb
Copy link
Member

Yaketh (Kushmanmb) commented Feb 21, 2026

hide keys

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Kushmanmb Yaketh (Kushmanmb) Awaiting requested review from Kushmanmb

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

Assignees

@Kushmanmb Yaketh (Kushmanmb)

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Kushmanmb