security: remove all hardcoded hostnames and passwords

vkuttyp · Copilot · vkuttyp · commit b9b7781cd8c4 · 2026-02-28T21:38:21.000+03:00
Replace hardcoded fallback credentials with empty strings so no
real server address or password appears in source code.

Files cleaned:
- cosmo-benchmark/main.swift (BENCH_HOST, BENCH_PASS)
- cosmo-benchmark/README.md
- cosmo-swift/main.swift
- cosmo/Program.cs
- Tests/CosmoMSSQLTests/Support/TestDatabase.swift
- Tests/CosmoMSSQLTests/SQLClientCompatTests.swift

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/Tests/CosmoMSSQLTests/SQLClientCompatTests.swift b/Tests/CosmoMSSQLTests/SQLClientCompatTests.swift
@@ -5,7 +5,7 @@
 //
 // Environment variables (same as the rest of the test suite):
 //   MSSQL_TEST_HOST=127.0.0.1
-//   MSSQL_TEST_PASS=SuperStr0ngP@ssword
+//   MSSQL_TEST_PASS=<password>
 //   swift test --filter SQLClientCompat
 
 import XCTest
diff --git a/Tests/CosmoMSSQLTests/Support/TestDatabase.swift b/Tests/CosmoMSSQLTests/Support/TestDatabase.swift
@@ -9,7 +9,7 @@ import CosmoMSSQL
 //   MSSQL_TEST_HOST=127.0.0.1 \
 //   MSSQL_TEST_PORT=1433 \
 //   MSSQL_TEST_USER=sa \
-//   MSSQL_TEST_PASS=SuperStr0ngP@ssword \
+//   MSSQL_TEST_PASS=<password> \
 //   MSSQL_TEST_DB=MSSQLNioTestDb \
 //   swift test --filter MSSQLNio
 //
@@ -28,7 +28,7 @@ struct TestDatabase {
             port:                   Int(env["MSSQL_TEST_PORT"] ?? "1433") ?? 1433,
             database:               env["MSSQL_TEST_DB"]   ?? "MSSQLNioTestDb",
             username:               env["MSSQL_TEST_USER"] ?? "sa",
-            password:               env["MSSQL_TEST_PASS"] ?? "SuperStr0ngP@ssword",
+            password:               env["MSSQL_TEST_PASS"] ?? "",
             trustServerCertificate: true
         )
     }
diff --git a/cosmo-benchmark/README.md b/cosmo-benchmark/README.md
@@ -19,7 +19,7 @@ sudo apt install freetds-dev
 ```bash
 cd cosmo-benchmark
 
-# defaults: hanan.iserveus.com:1433  MurshiDb  sa  aBCD111
+# defaults: localhost:1433  MurshiDb  sa  (set BENCH_PASS)
 swift run -c release
 
 # custom server
diff --git a/cosmo-benchmark/Sources/cosmo-benchmark/main.swift b/cosmo-benchmark/Sources/cosmo-benchmark/main.swift
@@ -7,11 +7,11 @@ import SQLClientSwift
 // MARK: - Configuration
 // ─────────────────────────────────────────────
 
-let host     = ProcessInfo.processInfo.environment["BENCH_HOST"]     ?? "localhost"
+let host     = ProcessInfo.processInfo.environment["BENCH_HOST"]     ?? ""
 let port     = UInt16(ProcessInfo.processInfo.environment["BENCH_PORT"] ?? "1433") ?? 1433
 let database = ProcessInfo.processInfo.environment["BENCH_DB"]       ?? "MurshiDb"
 let user     = ProcessInfo.processInfo.environment["BENCH_USER"]     ?? "sa"
-let password = ProcessInfo.processInfo.environment["BENCH_PASS"]     ?? "aBCD111"
+let password = ProcessInfo.processInfo.environment["BENCH_PASS"]     ?? ""
 let query    = ProcessInfo.processInfo.environment["BENCH_QUERY"]    ?? "SELECT * FROM Accounts"
 let iterations = Int(ProcessInfo.processInfo.environment["BENCH_ITER"] ?? "20") ?? 20
 
diff --git a/cosmo-swift/Sources/cosmo-swift/main.swift b/cosmo-swift/Sources/cosmo-swift/main.swift
@@ -4,7 +4,7 @@ import CosmoSQLCore
 print("Hello, World!")
 
 let conn = try await MSSQLConnection.connect(configuration: .init(
-    connectionString: "Server=localhost,1433;Database=MurshiDb;User Id=sa;Password=aBCD111;Encrypt=true;TrustServerCertificate=true"
+    connectionString: "Server=\(ProcessInfo.processInfo.environment["MSSQL_HOST"] ?? "localhost"),1433;Database=\(ProcessInfo.processInfo.environment["MSSQL_DB"] ?? "MurshiDb");User Id=\(ProcessInfo.processInfo.environment["MSSQL_USER"] ?? "sa");Password=\(ProcessInfo.processInfo.environment["MSSQL_PASS"] ?? "");Encrypt=true;TrustServerCertificate=true"
 ))
 defer { Task { try? await conn.close() } }
 
diff --git a/cosmo/Program.cs b/cosmo/Program.cs
@@ -3,8 +3,12 @@
 using CosmoSQLClient.MsSql;
 
 Console.WriteLine("Hello, World!");
+var host = Environment.GetEnvironmentVariable("MSSQL_HOST") ?? "localhost";
+var db   = Environment.GetEnvironmentVariable("MSSQL_DB")   ?? "MurshiDb";
+var user = Environment.GetEnvironmentVariable("MSSQL_USER") ?? "sa";
+var pass = Environment.GetEnvironmentVariable("MSSQL_PASS") ?? "";
 await using var conn = await MsSqlConnection.OpenAsync(
-    "Server=localhost,1433;Database=MurshiDb;User Id=sa;Password=aBCD111;Encrypt=True;TrustServerCertificate=True;");
+    $"Server={host},1433;Database={db};User Id={user};Password={pass};Encrypt=True;TrustServerCertificate=True;");
 
 var table = await conn.QueryTableAsync("SELECT TOP 3 AccountNo, AccountName, AccountTypeID, IsMain FROM Accounts");
 
