Skip to content

feat(config): redact secret-looking fields in GlobalConfig dumps#2494

Draft
leshy wants to merge 1 commit into
mainfrom
ivan/feat/secret_censorship
Draft

feat(config): redact secret-looking fields in GlobalConfig dumps#2494
leshy wants to merge 1 commit into
mainfrom
ivan/feat/secret_censorship

Conversation

@leshy

@leshy leshy commented Jun 15, 2026

Copy link
Copy Markdown
Member

What

GlobalConfig.model_dump() and repr() now redact values of fields whose name looks secret — contains _secret or token, or ends in _key — replacing non-None values with ***.

This keeps secrets out of dimos show-config output and any place a config is logged/repr'd. Matching is by field-name pattern, so future secret fields (or env-injected extras) are masked automatically. False positives (e.g. tokenizer) are acceptable — over-censoring is the safe direction.

How to test

python - <<'PY'
from dimos.core.global_config import GlobalConfig

class C(GlobalConfig):
    api_key: str = "AKIA-secret"
    access_token: str = "tok_abc"
    client_secret: str = "shh"

c = C()
d = c.model_dump()
assert d["api_key"] == d["access_token"] == d["client_secret"] == "***"
assert "AKIA" not in repr(c) and "tok_abc" not in repr(c)
print("ok")
PY

Also: dimos show-config shows *** for any secret-named field; None and non-secret fields are unchanged.

Existing dimos/core/test_global_config.py passes; mypy dimos/core/global_config.py clean.

@leshy
feat(config): redact secret-looking fields in GlobalConfig dumps
560b893 
model_dump() and repr() now mask values of fields whose name contains
"_secret" or "token", or ends in "_key" (non-None values -> "***").
Keeps secrets out of `dimos show-config` output and any logged config repr.
@codecov

codecov Bot commented Jun 15, 2026
edited
Loading

Copy link
Copy Markdown

Codecov Report

❌ Patch coverage is 70.00000% with 3 lines in your changes missing coverage. Please review.
✅ All tests successful. No failed tests found.

Files with missing lines Patch % Lines
dimos/core/global_config.py 70.00% 3 Missing ⚠️
Flag Coverage Δ
OS-ubuntu-24.04-arm 63.85% <70.00%> (+<0.01%) ⬆️
OS-ubuntu-latest 64.70% <70.00%> (+<0.01%) ⬆️
Py-3.10 64.69% <70.00%> (+<0.01%) ⬆️
Py-3.11 64.69% <70.00%> (+<0.01%) ⬆️
Py-3.12 64.69% <70.00%> (+<0.01%) ⬆️
Py-3.13 64.69% <70.00%> (+<0.01%) ⬆️
Py-3.14 64.70% <70.00%> (-0.01%) ⬇️
Py-3.14t 64.69% <70.00%> (+<0.01%) ⬆️
SelfHosted-Large 30.39% <70.00%> (?)
SelfHosted-Linux 38.29% <70.00%> (+<0.01%) ⬆️
SelfHosted-macOS 37.00% <70.00%> (-0.04%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines Coverage Δ
dimos/core/global_config.py 79.48% <70.00%> (-1.40%) ⬇️

... and 18 files with indirect coverage changes

🚀 New features to boost your workflow:
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@paul-nechifor paul-nechifor Awaiting requested review from paul-nechifor paul-nechifor will be requested when the pull request is marked ready for review paul-nechifor is a code owner

@spomichter spomichter Awaiting requested review from spomichter spomichter will be requested when the pull request is marked ready for review spomichter is a code owner

@mustafab0 mustafab0 Awaiting requested review from mustafab0 mustafab0 will be requested when the pull request is marked ready for review mustafab0 is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@leshy