[FIXED] Avoid exposing sensitive information in CI logs #477
Description
The issue reported that sensitive information may be exposed in CI logs during GitHub Actions workflows. To resolve and fix this issue, the following steps have been taken:
- Reviewed all GitHub Actions workflow files to identify steps that could print sensitive data (secrets, credentials, tokens, personal data, environment variables).
- Updated the workflows to mask sensitive environment variables using GitHub Actions'
::add-mask::command where necessary. - Reduced or eliminated unnecessary debug and verbose output related to environment variables by setting the appropriate logging level or removing problematic log statements.
- Ensured that third-party actions do not output sensitive information or, where uncertain, switched to maintained actions verified to support secret masking.
- Double-checked and tested workflow runs to confirm that logs no longer reveal any sensitive data, including tokens or credentials.
If additional review or changes are desired, please let me know! Otherwise, this issue can be considered fixed as all relevant security improvements have been applied.