mirror of
https://github.com/openclaw/openclaw.git
synced 2026-03-14 11:30:41 +00:00
42e3d8d693
* Secrets: add inline allowlist review set * Secrets: narrow detect-secrets file exclusions * Secrets: exclude Docker fingerprint false positive * Secrets: allowlist test and docs false positives * Secrets: refresh baseline after allowlist updates * Secrets: fix gateway chat fixture pragma * Secrets: format pre-commit config * Android: keep talk mode fixture JSON valid * Feishu: rely on client timeout injection * Secrets: allowlist provider auth test fixtures * Secrets: allowlist onboard search fixtures * Secrets: allowlist onboard mode fixture * Secrets: allowlist gateway auth mode fixture * Secrets: allowlist APNS wake test key * Secrets: allowlist gateway reload fixtures * Secrets: allowlist moonshot video fixture * Secrets: allowlist auto audio fixture * Secrets: allowlist tiny audio fixture * Secrets: allowlist embeddings fixtures * Secrets: allowlist resolve fixtures * Secrets: allowlist target registry pattern fixtures * Secrets: allowlist gateway chat env fixture * Secrets: refresh baseline after fixture allowlists * Secrets: reapply gateway chat env allowlist * Secrets: reapply gateway chat env allowlist * Secrets: stabilize gateway chat env allowlist * Secrets: allowlist runtime snapshot save fixture * Secrets: allowlist oauth profile fixtures * Secrets: allowlist compaction identifier fixture * Secrets: allowlist model auth fixture * Secrets: allowlist model status fixtures * Secrets: allowlist custom onboarding fixture * Secrets: allowlist mattermost token summary fixtures * Secrets: allowlist gateway auth suite fixtures * Secrets: allowlist channel summary fixture * Secrets: allowlist provider usage auth fixtures * Secrets: allowlist media proxy fixture * Secrets: allowlist secrets audit fixtures * Secrets: refresh baseline after final fixture allowlists * Feishu: prefer explicit client timeout * Feishu: test direct timeout precedence
21 lines
741 B
TypeScript
21 lines
741 B
TypeScript
import { describe, expect, it } from "vitest";
|
|
import { maskApiKey } from "./mask-api-key.js";
|
|
|
|
describe("maskApiKey", () => {
|
|
it("returns missing for empty values", () => {
|
|
expect(maskApiKey("")).toBe("missing");
|
|
expect(maskApiKey(" ")).toBe("missing");
|
|
});
|
|
|
|
it("masks short and medium values without returning raw secrets", () => {
|
|
expect(maskApiKey(" abcdefghijklmnop ")).toBe("ab...op");
|
|
expect(maskApiKey(" short ")).toBe("s...t");
|
|
expect(maskApiKey(" a ")).toBe("a...a");
|
|
expect(maskApiKey(" ab ")).toBe("a...b");
|
|
});
|
|
|
|
it("masks long values with first and last 8 chars", () => {
|
|
expect(maskApiKey("1234567890abcdefghijklmnop")).toBe("12345678...ijklmnop"); // pragma: allowlist secret
|
|
});
|
|
});
|