UKHomeOffice · chej-hod · Jun 15, 2023
diff --git a/.drone.yml b/.drone.yml
@@ -146,6 +146,7 @@ steps:
     IMAGE_NAME: platform-hub-api:${DRONE_COMMIT_SHA}
     SERVICE_URL: http://anchore-submission-server:10080
     WHITELIST:  CVE-2020-8164,CVE-2020-8165,CVE-2020-8162,CVE-2019-5420,CVE-2021-22880,CVE-2021-29509,CVE-2021-32740,CVE-2021-22904,CVE-2020-36327
+    FAIL_ON_DETECTION: false
   when:
     event: [push, tag]
 

diff --git a/platform-hub-api/Dockerfile b/platform-hub-api/Dockerfile
@@ -10,6 +10,7 @@ RUN apk update && apk upgrade \
     postgresql-client postgresql-dev \
     && apk --update add --virtual build_deps sudo build-base ruby-dev libc-dev libressl-dev zlib-dev \
     && echo 'gem: --no-document' > /etc/gemrc \
+    && gem i rubygems-update -v '<3' && update_rubygems \
     && gem install bundler -v 2.1.4 \
     && gem update --system \
     && rm /etc/ssl/certs/ca-cert-DST_ACES_CA_X6.pem \

diff --git a/platform-hub-api/app/controllers/users_controller.rb b/platform-hub-api/app/controllers/users_controller.rb
@@ -38,7 +38,26 @@ def search
 
   # GET /users/:id/identities
   def identities
-    render json: @user.identities
+    user_identity = @user.identities.dup
+
+    if current_user.id != @user.id
+      user_identity.each do |item|
+        if item["provider"] == "ecr"
+          if item["data"]
+            if item["data"]["credentials"]
+              if item["data"]["credentials"]["access_id"]
+                item["data"]["credentials"]["access_id"] = item["data"]["credentials"]["access_id"].gsub!(/\S/, '*')
+              end
+              if item["data"]["credentials"]["access_key"]
+                item["data"]["credentials"]["access_id"] = item["data"]["credentials"]["access_key"].gsub!(/\S/, '*')
+              end
+            end
+          end
+        end
+      end
+    end
+
+    render json: user_identity
   end
 
   # POST /users/:id/make_admin