Secrets are not being protected. Do not use -AsPlainText from InputFunctions.ps1

Reading the [documentation for ConvertTo-SecureString](https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.security/convertto-securestring?view=powershell-7.4) should give a good idea of why using `-AsPlainText` is not a good idea.

Basically, any *actual* secrets should be encrypted or stored as a `[SecureString]` at all times. There should never be a point where they are stored as plain text, or else they aren't really secret.

Also, this is [an error in PSScriptAnalyzer](https://learn.microsoft.com/en-us/powershell/utility-modules/psscriptanalyzer/rules/avoidusingconverttosecurestringwithplaintext?view=ps-modules), so anyone using that can't use this module.



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Secrets are not being protected. Do not use -AsPlainText from InputFunctions.ps1 #1086

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Secrets are not being protected. Do not use -AsPlainText from InputFunctions.ps1 #1086

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions