Build logs now redact Sensitive Environment Variable values
Vercel now automatically redacts sensitive environment variable values in deployment build logs when marked as sensitive and 32 characters or longer, with visibility indicators showing when redaction occurred. The system also redacts selected system environment variables used for deployment security.
When an Environment Variable is marked Sensitive and has a value 32 characters or longer, Vercel now replaces it with in the deployment's build logs.[REDACTED]
The Build Logs view also indicates when redaction happened, giving teams visibility into why output was masked without ever exposing the underlying value. When a value is redacted, Vercel logs the Environment Variable key, project, and deployment in the Activity Log, but never the value.
Vercel also redacts selected system Environment Variables used for deployment security.
Learn more about .Sensitive Environment Variables
Source: original entry ↗