Package: pass Version: 1.7.4-5 Severity: normal X-Debbugs-Cc: eingousef+debb...@rhizogen.es.eu.org
Dear Maintainer, In case of a pass repo shared on a git server, a user who clones the repo won't see the plain text passwords when running `pass git log -p`, only the binary diffs. This is because pass only sets the `diff.gpg.*` git options when running the `pass git init` command, see https://sources.debian.org/src/password-store/1.7.4-5/src/password-store.sh/#L661 For a user who never runs `pass git init` in his local repo, these options are not set automatically, and the doc doesn't mention they should be set manually. A user who clones a shared pass repo should expect it to behave on his machine exactly like it does on the repo creator's machine. Maybe `pass` could automatically set the `diff.gpg.*` options when it's called with a git subcommand for the first timeĀ ? Regards, -- System Information: Debian Release: bookworm/sid APT prefers testing APT policy: (990, 'testing'), (980, 'stable-updates'), (980, 'stable'), (500, 'stable-security'), (500, 'oldstable-updates'), (500, 'oldoldstable'), (500, 'oldstable'), (90, 'experimental'), (90, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.18.0-2-amd64 (SMP w/4 CPU threads; PREEMPT) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: OpenRC (via /run/openrc), PID 1: init LSM: AppArmor: enabled Versions of packages pass depends on: ii gnupg 2.2.35-3 ii tree 2.0.2-1 Versions of packages pass recommends: ii git 1:2.35.1-1 pn qrencode <none> ii xclip 0.13-2 Versions of packages pass suggests: ii libxml-simple-perl 2.25-1 ii perl 5.34.0-5 ii python-is-python2 [python] 2.7.18-9 ii python3 3.10.5-3 ii ruby 1:3.0+1 -- no debconf information
