Meltano

Would anyone be able to confirm whether sensitive data is stored in the Meltano database? The only table which gives me a bit of concern is the one named 'oauth' which contains a column for `access_token`.

Did you ever discover if this is an issue? I have been setting up a demo and `oauth` hasn't been used

`plugin_settings` does however have a `value` field which I guess is the api token in a binary format of some type

Pretty certain that `oauth` table is for the UI as I know (95+%) it doesn't have anything to do with the singer taps/targets.

In regards to taps/targets the state is stored in the DB. It's really impossible to say whether or not state has "sensitive" data in it as it technically could (even though it's unlikely).

The more likely place sensitive data would slip out is in the logs (which isn't stored in the db) , `.meltano/runs/*`

&gt; It's really impossible to say whether or not state has "sensitive" data in it as it technically could (even though it's unlikely).
That tap (and theoretically the target) determine what goes in there