With reference to the above line in the class Request, if a user sets the Logs to INFO, there is the possibility of Personal Identifiable Information or PII being sent to the Cloudwatch logs. I would recommend that any logs that print out responses from API calls, should only be in debug mode so that PII can be kept out of the logs in production.
https://github.com/amazon-connect/amazon-connect-salesforce-lambda/blob/3a926720ee1ae550a2829f8976cdfea2bd985f69/sam-app/lambda_functions/salesforce.py#L215
With reference to the above line in the
class Request, if a user sets the Logs toINFO, there is the possibility of Personal Identifiable Information or PII being sent to the Cloudwatch logs. I would recommend that any logs that print out responses from API calls, should only be in debug mode so that PII can be kept out of the logs in production.