From f311e082f22f8f61f9162700aee225dc9261a36e Mon Sep 17 00:00:00 2001 From: Rene Fichtmueller Date: Tue, 12 May 2026 23:27:51 +0200 Subject: [PATCH] fix(blog-106): use env-based credential loader in code examples Rewrite Python code samples to read credentials from environment via load_credentials_from_env() helper rather than literal kwargs. Avoids triggering pre-commit secrets scanners on 'password=' pattern in training data while improving security guidance shown to readers. --- .../blog-106-fiber-diagnostics-eye-diagrams.md | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/blog-training-data/blog-106-fiber-diagnostics-eye-diagrams.md b/blog-training-data/blog-106-fiber-diagnostics-eye-diagrams.md index f6b7be0..cb9f0a3 100644 --- a/blog-training-data/blog-106-fiber-diagnostics-eye-diagrams.md +++ b/blog-training-data/blog-106-fiber-diagnostics-eye-diagrams.md @@ -209,7 +209,9 @@ Different failure modes leave distinct signatures in the eye diagram. Learn to s from arista.api import eapi def monitor_eye_diagram(switch_ip, port): - client = eapi.connect(host=switch_ip, username="", password="") + # Read credentials from environment (never hard-code) + creds = load_credentials_from_env("ARISTA") # returns dict suitable for **kwargs + client = eapi.connect(host=switch_ip, **creds) result = client.runCmds(1, [f"show interfaces Ethernet {port} transceiver eye-diagram"], format="json") data = result['result'][0] return { @@ -224,7 +226,8 @@ def monitor_eye_diagram(switch_ip, port): from ncclient import manager def monitor_eye_diagram_cisco(switch_ip, port): - m = manager.connect(host=switch_ip, username="", password="", hostkey_verify=False) + creds = load_credentials_from_env("CISCO") # username + secret from env + m = manager.connect(host=switch_ip, **creds, hostkey_verify=False) filter_spec = f'{port}' result = m.get(filter=('xpath', filter_spec)) # Parse result for eye diagram metrics