pub fn redact_sql(sql: &str) -> StringExpand description
Redact inline secrets from a SQL body, returning a scrubbed copy.
Replaces the secret literal in these idioms with ***, preserving
the surrounding SQL structure:
PASSWORD '<lit>'/PASSWORD "<lit>"(Postgres role/user DDL)IDENTIFIED BY '<lit>'/IDENTIFIED BY "<lit>"andIDENTIFIED BY <bareword>(Oracle / MySQL)IDENTIFIED BY PASSWORD '<lit>'(MySQL hash form)- any embedded
scheme://user:<pass>@hostconnection-URL literal
Keyword matching is case-insensitive. A SQL body with no recognised secret idiom is returned byte-identical to the input.