Exécutez n'importe quel Skill dans Manus
en un clic

Exécutez n'importe quel Skill dans Manus en un clic

$pwd:

bash-herestring-newline-secrets

Name: Bash Herestring Newline Secrets
Author: divinevideo

// Fix password/secret authentication failures caused by trailing newlines when creating Google Cloud secrets (or similar) with bash here-strings. Use when: (1) Password authentication fails with correct password, (2) Secret created with `<<< "value"` syntax, (3) Error like "password authentication failed" or "invalid token" despite correct value. Bash here-strings (`<<<`) add a trailing newline that corrupts secrets.

Exécuter dans Manus

$ git log --oneline --stat

stars:253

forks:50

updated:5 mai 2026 à 02:08

SKILL.md

readonly

name	bash-herestring-newline-secrets
description	Fix password/secret authentication failures caused by trailing newlines when creating Google Cloud secrets (or similar) with bash here-strings. Use when: (1) Password authentication fails with correct password, (2) Secret created with `<<< "value"` syntax, (3) Error like "password authentication failed" or "invalid token" despite correct value. Bash here-strings (`<<<`) add a trailing newline that corrupts secrets.
author	Claude Code
version	1.0.0
date	"2026-01-31T00:00:00.000Z"

Bash Here-String Newline in Secrets

Problem

When creating secrets using bash here-strings (<<<), a trailing newline is silently appended to the value. This causes authentication failures with misleading error messages that suggest the password/token is wrong when it's actually correct—just with an extra newline character.

Context / Trigger Conditions

Secret created with: gcloud secrets create NAME --data-file=- <<< "value"
Or similar: echo "value" | gcloud secrets create... (echo adds newline by default)
Error messages like:
- "password authentication failed for user X"
- "invalid token"
- "authentication failed"
The secret value appears correct when viewed
Works locally but fails when secret is used

Solution

Wrong (adds newline):

gcloud secrets create my-secret --data-file=- <<< "mypassword"
echo "mypassword" | gcloud secrets create my-secret --data-file=-

Correct (no newline):

echo -n "mypassword" | gcloud secrets create my-secret --data-file=-
printf '%s' "mypassword" | gcloud secrets create my-secret --data-file=-

To fix an existing secret:

echo -n "correct-value" | gcloud secrets versions add my-secret --data-file=-

Verification

Check the secret length to detect trailing newline:

# Get secret and count bytes
gcloud secrets versions access latest --secret=my-secret | wc -c
# Compare to expected length (password length, not password length + 1)

Or use xxd to see the actual bytes:

gcloud secrets versions access latest --secret=my-secret | xxd | tail -1
# Look for '0a' (newline) at the end

Example

Symptom:

Database connection test failed: password authentication failed for user "crawler"

Investigation:

$ gcloud secrets versions access latest --secret=my-db-password
mypassword
$ gcloud secrets versions access latest --secret=my-db-password | wc -c
11  # But password is only 10 characters!

Fix:

$ echo -n "mypassword" | gcloud secrets versions add my-db-password --data-file=-
Created version [2] of the secret [my-db-password].

Notes

This affects any system that uses secrets: databases, APIs, tokens, etc.
The <<< here-string is a bash feature that ALWAYS adds a newline
echo also adds a newline by default; use echo -n or printf '%s'
Some systems trim whitespace from secrets, but many (like PostgreSQL) don't
When debugging auth failures, always check for trailing whitespace first

References

Bash manual on here-strings: https://www.gnu.org/software/bash/manual/bash.html#Here-Strings

related-skills.json

même dépôt

e2e-test.md

from "divinevideo/divine-mobile"

Run and debug Flutter E2E integration tests that exercise the real app against a local Docker backend (no mocks). Use when running E2E tests, debugging failures, or working on the local harness.

2026-05-27253

review-before-commit.md

from "divinevideo/divine-mobile"

Review all uncommitted changes before pushing. Checks for dead code, stale comments, CLAUDE.md rule violations, unused imports, and inconsistencies introduced during the current session. Invoke with /review-before-commit.

2026-05-11253

argocd-externalsecret-namespace-permission.md

from "divinevideo/divine-mobile"

Fix ArgoCD ExternalSecret deployment failing with "namespace X is not permitted in project Y". Use when: (1) ExternalSecret shows OutOfSync in ArgoCD but won't sync, (2) ArgoCD application status shows "namespace X is not permitted in project 'infrastructure'", (3) ExternalSecret targets a namespace managed by a different ArgoCD project, (4) Using apps-of-apps pattern with separate infrastructure and application projects.

2026-05-05253

art-direct.md

from "divinevideo/divine-mobile"

Art direction for any content — reads text, PDF, Word, HTML, PPT, then proposes 2-3 creative directions with photography style, mood, and visual language. After selection, generates AI image prompts and visual briefs section-by-section. Use when the user shares content and needs visual direction, image sourcing, or creative direction for any material.

2026-05-05253

async-await-null-race-condition.md

from "divinevideo/divine-mobile"

Fix "Null check operator used on a null value" errors when an object is set to null during an async await. Use when: (1) Object reference is nullified while awaiting, (2) Code accesses object with ! after await returns, (3) Cancel/dispose operations run concurrently with async operations on same object. Solution: capture local reference before await.

2026-05-05253

aws-v4-signing-custom-headers-gcs.md

from "divinevideo/divine-mobile"

Add custom metadata headers (x-amz-meta-*) to AWS v4 signed requests for GCS S3-compatible API. Use when: (1) Adding custom metadata to GCS uploads via S3 API, (2) Getting signature mismatch errors after adding new headers, (3) x-amz-meta-* headers being ignored or causing 403 errors. Custom headers MUST be included in canonical headers and signed headers list.

2026-05-05253

package.json

"author": "divinevideo"

"repository": "divinevideo/divine-mobile"

Ouvrir le dépôt GitHub Voir les dépôts du créateur

$ install --global

$ download --local

Exécuter dans Manus

$ useful --forSOC

Développeurs de logicielsProfessions informatiques et mathématiques15-1252L4

name	bash-herestring-newline-secrets
description	Fix password/secret authentication failures caused by trailing newlines when creating Google Cloud secrets (or similar) with bash here-strings. Use when: (1) Password authentication fails with correct password, (2) Secret created with `<<< "value"` syntax, (3) Error like "password authentication failed" or "invalid token" despite correct value. Bash here-strings (`<<<`) add a trailing newline that corrupts secrets.
author	Claude Code
version	1.0.0
date	"2026-01-31T00:00:00.000Z"

Bash Here-String Newline in Secrets

Problem

Context / Trigger Conditions

Secret created with: gcloud secrets create NAME --data-file=- <<< "value"
Or similar: echo "value" | gcloud secrets create... (echo adds newline by default)
Error messages like:
- "password authentication failed for user X"
- "invalid token"
- "authentication failed"
The secret value appears correct when viewed
Works locally but fails when secret is used

Solution

Wrong (adds newline):

gcloud secrets create my-secret --data-file=- <<< "mypassword"
echo "mypassword" | gcloud secrets create my-secret --data-file=-

Correct (no newline):

echo -n "mypassword" | gcloud secrets create my-secret --data-file=-
printf '%s' "mypassword" | gcloud secrets create my-secret --data-file=-

To fix an existing secret:

echo -n "correct-value" | gcloud secrets versions add my-secret --data-file=-

Verification

Check the secret length to detect trailing newline:

# Get secret and count bytes
gcloud secrets versions access latest --secret=my-secret | wc -c
# Compare to expected length (password length, not password length + 1)

Or use xxd to see the actual bytes:

gcloud secrets versions access latest --secret=my-secret | xxd | tail -1
# Look for '0a' (newline) at the end

Example

Symptom:

Database connection test failed: password authentication failed for user "crawler"

Investigation:

$ gcloud secrets versions access latest --secret=my-db-password
mypassword
$ gcloud secrets versions access latest --secret=my-db-password | wc -c
11  # But password is only 10 characters!

Fix:

$ echo -n "mypassword" | gcloud secrets versions add my-db-password --data-file=-
Created version [2] of the secret [my-db-password].

Notes

This affects any system that uses secrets: databases, APIs, tokens, etc.
The <<< here-string is a bash feature that ALWAYS adds a newline
echo also adds a newline by default; use echo -n or printf '%s'
Some systems trim whitespace from secrets, but many (like PostgreSQL) don't
When debugging auth failures, always check for trailing whitespace first

References

Bash manual on here-strings: https://www.gnu.org/software/bash/manual/bash.html#Here-Strings

bash-herestring-newline-secrets

Bash Here-String Newline in Secrets

Problem

Context / Trigger Conditions

Solution

Verification

Example

Notes

References

Plus depuis ce dépôt

Plus depuis ce dépôt

Bash Here-String Newline in Secrets

Problem

Context / Trigger Conditions

Solution

Verification

Example

Notes

References