rails_semantic_logger icon indicating copy to clipboard operation
rails_semantic_logger copied to clipboard

Published 20 hours ago verified publisher icon reidmorrison

Ensure filtered params aren't revealed in sql

Open kennyevil opened this issue 1 year ago • 2 comments
trafficstars

Issue #187

Sensitive information may accidentally be sent to third party applications via the bind values of the SQL statements logged using semantic logger

Description of changes

If a bind key is included in the filter_parameters in Rails.configuration value is set as "[FILTERED]"

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

kennyevil avatar Nov 07 '24 10:11 kennyevil

@reidmorrison Do you have time to review this?

kennyevil avatar Nov 12 '24 13:11 kennyevil

@reidmorrison any chance this could be merged? 🙏

d4rky-pl avatar Feb 05 '25 09:02 d4rky-pl