Travis CI changelog
Travis CI changelog

Active scanning and censoring post-job build logs




Travis CI introduces additional security scans of build job logs. The scan is mandatory and meant to improve protection against accidentally or maliciously leaked secrets. Scan process is executed shortly after the build job is completed.

If the scan process finds a secret-like pattern:

  • the respective job log line will be censored with asterisks (line numbers do refer to a raw job log line numbers)
  • graphic indicator of the log scan failing will be visible in the repository page and the dashboard until either repository administrator reviews it or 7 days elapse; only repository administrators do have access to the report details

Read more: