filters: Do not report AVATAR_SALT, or other salts.

2025-10-23 04:52:12 +00:00 · 2025-03-13 15:08:24 +00:00
parent 2c31de0a86
commit 75cf33079a
1 changed files with 6 additions and 0 deletions
--- a/zerver/filters.py
+++ b/zerver/filters.py
@@ -1,3 +1,4 @@
+import re
 from typing import Any

 from django.http import HttpRequest
@@ -6,6 +7,11 @@ from typing_extensions import override


 class ZulipExceptionReporterFilter(SafeExceptionReporterFilter):
+    # Add _SALT to the standard list
+    hidden_settings = re.compile(
+        r"API|TOKEN|KEY|SECRET|PASS|SIGNATURE|HTTP_COOKIE|_SALT", flags=re.IGNORECASE
+    )
+
    @override
    def get_post_parameters(self, request: HttpRequest | None) -> dict[str, Any]:
        post_data = SafeExceptionReporterFilter.get_post_parameters(self, request)