Mixed log levels in Secret Detection job log output
Summary
When running Secret Detection with SECURE_LOG_LEVEL: "debug"
there are mixed log levels in the job log output.
[INFO] [secrets] [2021-04-23T16:36:39Z] ▶ GitLab secrets analyzer v3.19.0
[INFO] [secrets] [2021-04-23T16:36:39Z] ▶ Detecting project
[INFO] [secrets] [2021-04-23T16:36:39Z] ▶ Found project in /builds/gitlab-org/security-products/dependencies/retire.js
[INFO] [secrets] [2021-04-23T16:36:39Z] ▶ Running analyzer
[DEBU] [secrets] [2021-04-23T16:36:39Z] ▶ /builds/gitlab-org/security-products/dependencies/retire.js/.gitlab/secret-detection-ruleset.toml not found, ruleset support will be disabled.
[DEBU] [secrets] [2021-04-23T16:36:40Z] ▶ /usr/local/bin/gitleaks --report /tmp/gitleaks-047666181.json --path /builds/gitlab-org/security-products/dependencies/retire.js --config-path /gitleaks.toml --leaks-exit-code 0
time="2021-04-23T16:36:39Z" level=info msg="opening /builds/gitlab-org/security-products/dependencies/retire.js\n"
time="2021-04-23T16:36:40Z" level=error msg="object not found"
time="2021-04-23T16:36:40Z" level=info msg="scan time: 502 milliseconds 752 microseconds"
time="2021-04-23T16:36:40Z" level=info msg="commits scanned: 50"
time="2021-04-23T16:36:40Z" level=info msg="No leaks found"
[INFO] [secrets] [2021-04-23T16:36:40Z] ▶ Creating report
We can see there are some level=info
and level=error
hidden within the [DEBUG] section of the job output.
Steps to reproduce
Example Project
https://gitlab.com/gitlab-org/security-products/dependencies/retire.js/-/jobs/1207686364
What is the current bug behavior?
What is the expected correct behavior?
Relevant logs and/or screenshots
Output of checks
Results of GitLab environment info
Expand for output related to GitLab environment info
(For installations with omnibus-gitlab package run and paste the output of: `sudo gitlab-rake gitlab:env:info`) (For installations from source run and paste the output of: `sudo -u git -H bundle exec rake gitlab:env:info RAILS_ENV=production`)
Results of GitLab application Check
Expand for output related to the GitLab application check
(For installations with omnibus-gitlab package run and paste the output of:
sudo gitlab-rake gitlab:check SANITIZE=true
)(For installations from source run and paste the output of:
sudo -u git -H bundle exec rake gitlab:check RAILS_ENV=production SANITIZE=true
)(we will only investigate if the tests are passing)