Hello, I recently setup a number using authentication (sip user/pass/realm) and noticed that the

assistant-request

webhook contained all of the number's authentication information, in plain text, under message.phoneNumber.authentication. I assume this is a bug because querying the number by going to https://api.vapi.ai/phone-number/:id doesn't return the password. Please let me know if this is expected behavior so I can accommodate it on our end or if a fix will be in the future. Thank you!

Hey! To help track down this issue, could you share: - The call ID This would really help us figure out what went wrong!

I believe this is it -

3a5dd317-2584-4a6d-bb66-432320fdebcc

Hey @Cheeto_Burrito it's not an bug instead we send it out in plain text so users like you can use the values on their if they require it for same purpose. we can encrypt them but again it depends upon the users interests and requirements.

One question on this then, why would they be sent out via webhook and omitted when querying the number? Ideally neither would have the password at all, let alone in plain text, but really just curious why there is a difference.

@cheeto_burito You're absolutely right. I'll check with the team and resolve it.