Redact confidential resources in summarize action
For now, if we put this as the item in the summarize action:
item: |
- [ ] [{{title}}]({{web_url}}) {{labels}}
It'll include confidential issues. By default, we should:
- Replace
{{title}}
with something else, and - Maybe still keep
{{web_url}}
because people without the privileges cannot access nor read it anyway. The only thing it'll leak will be the issueiid
, which could already be observed by iterating through eachiid
anyway. - Also replace
{{labels}}
with something else.
In gitlab-org/quality/triage-ops!31 (merged) we try to do this in the policy file directly, but this should be the default behaviour. We could also provide an option to turn this off. Maybe:
item: |
- [ ] [{{title}}]({{web_url}}) {{labels}}
redact_confidential_resources: false
And of course make it default to true
.