[Enhancement] - Sanitize sensitive data from `.cli.his` #6361

IgorWounds · 2024-05-02T11:05:49Z

Why? (1-3 sentences or a bullet point list):
- The command history was saved locally with the login details not sanitized which could result in a security issue.
What? (1-3 sentences or a bullet point list):
- Introduces sanitization to protected keywords email, password and pat.
- The user can still use the upper arrow key to get his command unsanitized while the session is still lasting. After restarting the CLI, it can't be grabbed anymore in an unsanitized form.
- Fix long command names not showing providers
Impact (1-2 sentences or a bullet point list):
- Higher security.
Testing Done:
- Ensured it works by calling the login command and checking the local file.

Sanitize sensitive data from .cli.his

5420bde

IgorWounds added enhancement Enhancement security P0 cli OpenBB Platform CLI labels May 2, 2024

IgorWounds requested review from hjoaquim and montezdesousa May 2, 2024 11:05

IgorWounds and others added 2 commits May 2, 2024 13:17

Merge branch 'develop' into feature/sanitize-history

6b38b55

fix long command providers

683de15

montezdesousa approved these changes May 2, 2024

View reviewed changes

montezdesousa enabled auto-merge May 2, 2024 11:20

montezdesousa added this pull request to the merge queue May 2, 2024

Merged via the queue into develop with commit 18115e4 May 2, 2024
11 of 12 checks passed

piiq assigned IgorWounds May 2, 2024

piiq deleted the feature/sanitize-history branch May 7, 2024 08:45

Provide feedback