mirror of
https://github.com/Ed1s0nZ/CyberStrikeAI.git
synced 2026-05-22 23:49:48 +02:00
公明
59 lines
1.2 KiB
Go
59 lines
1.2 KiB
Go
package audit
|
|
|
|
import (
|
|
"encoding/json"
|
|
"strings"
|
|
)
|
|
|
|
var sensitiveKeySubstrings = []string{
|
|
"password", "api_key", "apikey", "secret", "token", "authorization",
|
|
"credential", "private_key", "access_key",
|
|
}
|
|
|
|
// SanitizeDetail redacts sensitive keys and truncates serialized size.
|
|
func SanitizeDetail(detail map[string]interface{}, maxBytes int) map[string]interface{} {
|
|
if detail == nil {
|
|
return nil
|
|
}
|
|
if maxBytes <= 0 {
|
|
maxBytes = 8192
|
|
}
|
|
out := sanitizeValue("", detail)
|
|
if m, ok := out.(map[string]interface{}); ok {
|
|
b, _ := json.Marshal(m)
|
|
if len(b) > maxBytes {
|
|
return map[string]interface{}{
|
|
"_truncated": true,
|
|
"_preview": string(b[:maxBytes]),
|
|
}
|
|
}
|
|
return m
|
|
}
|
|
return map[string]interface{}{"value": out}
|
|
}
|
|
|
|
func sanitizeValue(key string, v interface{}) interface{} {
|
|
kl := strings.ToLower(key)
|
|
for _, sub := range sensitiveKeySubstrings {
|
|
if strings.Contains(kl, sub) {
|
|
return "***"
|
|
}
|
|
}
|
|
switch t := v.(type) {
|
|
case map[string]interface{}:
|
|
m := make(map[string]interface{}, len(t))
|
|
for k, val := range t {
|
|
m[k] = sanitizeValue(k, val)
|
|
}
|
|
return m
|
|
case []interface{}:
|
|
arr := make([]interface{}, len(t))
|
|
for i, val := range t {
|
|
arr[i] = sanitizeValue(key, val)
|
|
}
|
|
return arr
|
|
default:
|
|
return v
|
|
}
|
|
}
|