feat: added no-secrets-masking respect option to allow raw output

[DmitryAnansky]

What/Why/How?

Introduced new respect command cli and respect-core run() options no-secrets-masking and noSecretsMasking.

This new option disables masking of secrets in the output. By default, any sensitive information, such as values described with format: password, as well as tokens and authentication headers from x-security,are masked with ******** in both terminal logs and file outputs. When this flag is set to true, the raw (unmasked) data shows in all outputs.

So in practice, when noSecretsMasking is provided and is true:

• Terminal output will not mask secrets with ********.
• run function execution result will contain additional property, called secretValues with the list of secret strings, it will be the consumer's responsibility to mask them.
• har-output will not mask secrets with ******** inside entries.
• json-output will not mask secrets with ******** inside workflow and step data + will contain additional property, called secretValues with the list of secret strings, it will be the consumer's responsibility to mask them:

{
  "files": {
    "test.arazzo.yaml": {
      "totalRequests": 4,
      "executedWorkflows": [
       ...
      ],
      "totalTimeMs": 1269.643958,
      "globalTimeoutError": false,
      "secretValues": [
        "secret",
        "super-secret"
      ]
    }
  },
  "status": "success",
  "totalTime": 1271.05825
}

Reference

Closes: #2341

Testing

CLI example:

redocly respect test.arazzo.yaml --verbose --no-secrets-masking

Screenshots (optional)

Check yourself

• Code changed? - Tested with Redoc/Realm/Reunite (internal)
• All new/updated code is covered by tests
• New package installed? - Tested in different environments (browser/node)
• Documentation update considered

Security

• The security impact of the change has been considered
• Code follows company security practices and guidelines

[changeset-bot]

🦋 Changeset detected

Latest commit: 210614d

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages

Name	Type
@redocly/respect-core	Minor
@redocly/cli	Minor
@redocly/openapi-core	Minor

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[github-actions]

Command	Mean [s]	Min [s]	Max [s]	Relative
redocly lint packages/core/src/benchmark/benches/rebilly.yaml	1.445 ± 0.027	1.415	1.497	1.00 ± 0.03
redocly-next lint packages/core/src/benchmark/benches/rebilly.yaml	1.442 ± 0.031	1.412	1.504	1.00

[github-actions]

📦 A new experimental 🧪 version v0.0.0-snapshot.1759850691 of Redocly CLI has been published for testing.

Install with NPM:

npm install @redocly/cli@0.0.0-snapshot.1759850691
# or
npm install @redocly/openapi-core@0.0.0-snapshot.1759850691
# or
npm install @redocly/respect-core@0.0.0-snapshot.1759850691

⚠️ Note: This is a development build and may contain unstable features.