Ability to Suppress chocolatey package command lines in chocolatey.log #955
Comments
This is exactly what #948 is for 0.10.1 |
|
There was a quiet parameter to keep the package from outputting any logging. We should re-add that back in. |
Yes, and that is what #948 is about. |
|
related to #953 |
|
Sweet - Sorry I wasn't able to find #948 before posting! |
Sometimes I have custom passwords I pass into a package (e.g. SQL Server SA password).
While I can't expect chocolatey to know what custom parameters are passwords, it would be nice to be able to suppress the entire display of the command line.
There is a precedent for this in the design pattern of MSIEXEC where the command line passed to MSI is never visible unless MSI debug logging is enabled in the registry.
I would be happy with simply being able to suppress the command line on packages where I know I am passing secrets.
If I had my druthers, I would have both a command line switch and a chocolatey feature option for this support.
UPDATE: Maybe a second parameter also hides the internal calls Chocolatey makes to it's built in install functions like Install-ChocolateyPackage ?
SIDETHOUGHT: Packer's pattern for secrets is to inject them into environment variables before calling script code. I could update my package's parameter parsing code to look for an environment variable and if present use it. That would hide it all the way through even to the command line in my chocolatey package.
Even if I do implement this sidethought pattern I think this request still has merit as there might be other reasons to need this and a coding pattern is a lot more work to discover and apply.
The text was updated successfully, but these errors were encountered: