-
From foxsec's web security checklist:
## Risk Management
* [x] The service must have performed a Rapid Risk Assessment
* [x] The service must be registered via a [New Service issue](https://github.co…
-
An optional recommendation of https://github.com/mozilla-services/dockerflow is to log to ``stdout`` in the [mozlog](https://wiki.mozilla.org/Firefox/Services/Logging) json schema.
Currently, it ap…
-
After switching to ``gunicorn``, the logging in stage and production is still in MozLog format, but only has the raw message as the ``Fields`` body. Determine how to do detailed logging with gunicorn.…
-
Rockets logs aren't mozlog-friendly and we already have everything covered, so let's just turn off Rocket's logs.
┆Issue is synchronized with this [Jira Task](https://jira.mozilla.com/browse/FXA-184)…
-
We should verify that all the correct metrics are logged for the new AET feature. This includes events for creation, deletion, updated etc.
┆Issue is synchronized with this [Jira Task](https://jira…
-
PR @ https://github.com/mozilla/fxa/pull/6425 but won't land cleanly so will require some work
┆Issue is synchronized with this [Jira Task](https://jira.mozilla.com/browse/FXA-2533)
┆Issue Number: FX…
-
https://hg.mozilla.org/mozilla-central/rev/165dd3fa6c49c7c45770b07e979a92d583d50407 added some new error handling to the mozlog formatters, but our custom formatter (https://github.com/servo/servo/blo…
-
Let's log the "important" things such as (re)enrollment and pairing.
I've asked cloudops to check that logging is not kept for more than 6mo, so we should be OK to include minimal PII (e.g., userna…
-
Hi,
this is a follow-up of the RRA. Please contact secops for any related question!
[edit: move checklist from @g-k's comment below --dustin]
Risk Management
--------------
Done.
Infras…
-
https://github.com/mozilla-services/dockerflow is a specification for automated building, testing and publishing of docker web application images that comply to a common set of behaviors.
Tracked …