Github user jtstorck commented on the issue:
https://github.com/apache/nifi/pull/1636
@aperepel Can you add usage documentation about the risks of allowing the
account name and key to be stored as flowfile attributes? Mentioning that
sensitive attributes are not supported, and that anyone with provenance access
for the processors will be able to see the attribute values. Also, the
flowfile repository, where the attributes are stored, does not support
encryption internally, and unless the repository is being written to a TDE
partition, the attribute values could possibly be accessed there, as well.
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
