8 comments

[ 3.4 ms ] story [ 30.0 ms ] thread
This would be attractive as a console application. But having to upload a file with sensitive information to CF to have it sanitized makes less sense.

Purpose and fit seems to be lost, here.

Looks like it can be run locally ok with npm https://github.com/cloudflare/har-sanitizer
Looks like it only checks for authorization: redaction in the headers which is great, but continues to leak the authorization header in batched http calls for Google APIs

IOW, a fine start, but one should still actually check har files for stanzas that are relevant to your authn/authz situation before sharing them with anyone

You can just deploy it to Cloudflare workers
From the article

>The tool is built entirely on Cloudflare Workers, and all sanitization is done client-side which means Cloudflare never sees the full contents of the session token.