Explicit warning regarding volume secrets

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
This commit is contained in:
Jakub Trávník 2025-12-01 17:02:50 +01:00 committed by GitHub
parent 709a08cfe8
commit 7f966b504b
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -263,7 +263,9 @@ export const configExportController = new Hono()
backupSchedulesRaw, scheduleNotifications, volumeMap, repoMap, notificationMap, params
);
// TODO: Volumes will have encrypted secrets (e.g., SMB/NFS credentials) in a future PR
// WARNING: As of now, volume exports may include sensitive data (e.g., SMB/NFS credentials) in cleartext.
// This is a known security limitation. Handle exported configuration files with care.
// Future PRs will implement encryption for these secrets.
const [exportVolumes, exportRepositories, exportNotifications] = await Promise.all([
exportEntities(volumes, params),
exportEntities(repositories, params),