Sanitize serialized library errors by TsuyoshiUshio · Pull Request #441 · Azure/azure-functions-nodejs-library

TsuyoshiUshio · 2026-05-19T21:18:17Z

Summary

add credential-aware sanitization when serializing non-Error thrown values
redact credential-like property names and known credential tokens while preserving useful object context
handle circular references in thrown objects without throwing during error conversion
add tests for credential properties, credential tokens, URL credentials, and circular references

Notes

This is a first implementation intended to support review and discussion. The worker PR handles the primary invocation-failure path before errors are sent to the host; this library PR keeps @azure/functions behavior aligned for library-level conversions/logging.

Validation

npm test (378 passing)
npm run lint

Redact credential-like properties and known credential tokens when serializing non-Error values so thrown objects retain useful context without exposing obvious secrets. Co-authored-by: Dobby <dobby@microsoft.com>

swapnil-nagar

Reverting accidental approavl

Co-authored-by: Dobby <dobby@microsoft.com>

Sanitize serialized library errors

ab56dae

Redact credential-like properties and known credential tokens when serializing non-Error values so thrown objects retain useful context without exposing obvious secrets. Co-authored-by: Dobby <dobby@microsoft.com>

TsuyoshiUshio requested a review from a team as a code owner May 19, 2026 21:18

swapnil-nagar approved these changes May 20, 2026

View reviewed changes

Comment thread src/errors.ts

Comment thread src/errors.ts Outdated

Comment thread src/errors.ts Outdated

Comment thread src/errors.ts Outdated

swapnil-nagar requested changes May 20, 2026

View reviewed changes

microsoft-github-policy-service Bot added the Needs: Author Feedback label May 20, 2026

Address sanitizer review feedback

426028c

microsoft-github-policy-service Bot removed the Needs: Author Feedback label May 20, 2026

swapnil-nagar previously approved these changes May 20, 2026

View reviewed changes

Comment thread src/utils/credentialSanitizer.ts

swapnil-nagar and others added 2 commits May 20, 2026 10:14

Merge branch 'v4.x' into fix/sanitize-library-error-serialization

be19fda

Rename credential sanitizer module

0187244

Co-authored-by: Dobby <dobby@microsoft.com>

TsuyoshiUshio dismissed swapnil-nagar’s stale review via 0187244 May 22, 2026 18:07

swapnil-nagar approved these changes May 22, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sanitize serialized library errors#441

Sanitize serialized library errors#441
TsuyoshiUshio wants to merge 4 commits into
v4.xfrom
fix/sanitize-library-error-serialization

TsuyoshiUshio commented May 19, 2026

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

swapnil-nagar left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

TsuyoshiUshio commented May 19, 2026

Summary

Notes

Validation

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

swapnil-nagar left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants