MediaMetz/gemini-cli
1
0
Fork 0
mirror of https://github.com/google-gemini/gemini-cli.git synced 2026-05-25 03:03:19 -07:00
Code Issues Packages Projects Releases Wiki Activity

test(core): verify GEMINI_CLI_ variables bypass value redaction

Browse Source
This commit is contained in:
Christian Gunderman
2026-05-15 13:17:22 -07:00
parent 998e94a32f
commit 351a16c905
1 changed files with 8 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/core/src/services/environmentSanitization.test.ts
+8
View File
@@ -65,6 +65,14 @@ describe('sanitizeEnvironment', () => {
expect(sanitized).toEqual(env);
});
it('should NOT redact GEMINI_CLI_ variables even if their value looks like a secret (fully trusted)', () => {
const env = {
GEMINI_CLI_SECRET: 'ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx',
};
const sanitized = sanitizeEnvironment(env, EMPTY_OPTIONS);
expect(sanitized).toEqual(env);
});
it('should redact variables with sensitive names from the denylist', () => {
const env = {
CLIENT_ID: 'sensitive-id',