i noticed the PAT secret is being kept in the config yaml file unencrypted. is there an option or plans to secure this string?
Hey @410sean,
Thanks for posting in the developer community!
I’ve implemented a number of features for the SailPoint CLI.
I can confirm that our credential storage standards currently match the most common implementation for command line tools like the firebase cli, NPM Publish command, etc. They use the same simple storage in the users home directory that we do.
Of course we are always looking for ways to make things even more secure, and I personally have been exploring options that would utilize the native secrets stores on each respective operating system.
Please let us know if you have any other questions or concerns, and as always if you have any issues we invite you to submit them on Github.
1 Like