Kent Yao created SPARK-42946: -------------------------------- Summary: Sensitive data could still be exposed by variable substitution Key: SPARK-42946 URL: https://issues.apache.org/jira/browse/SPARK-42946 Project: Spark Issue Type: Improvement Components: SQL Affects Versions: 3.3.2, 3.4.0 Reporter: Kent Yao
Case 1 by SET syntax's key part {code:java} Time taken: 0.017 seconds, Fetched 1 row(s) spark-sql> set ${spark.ssl.keyPassword} > ; abc <undefined> {code} Case 2 by SELECT as String lit {code:java} spark-sql> set spark.ssl.keyPassword; spark.ssl.keyPassword *********(redacted) Time taken: 0.009 seconds, Fetched 1 row(s) spark-sql> select '${spark.ssl.keyPassword}' > ; abc {code} -- This message was sent by Atlassian Jira (v8.20.10#820010) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscr...@spark.apache.org For additional commands, e-mail: issues-h...@spark.apache.org