Add env var to prevent down migrations decrypting tables, add encryption to CHANGELOG.md (!20210) · Merge requests · Administrator / sourcegraph

Administrator requested to merge decrypt-migration into main Apr 20, 2021

Created by: arussellsaw

I realised that anyone with database access could just decrypt tables by setting apply_reverse = true on the table, @eseliger recommended a safety of an env var that must be set to enable this to happen.

https://sourcegraph.slack.com/archives/CHPC7UX16/p1618905663056700

i've also added to CHANGELOG

Add env var to prevent down migrations decrypting tables, add encryption to CHANGELOG.md

Merge request reports