Open Jordan-Nelson opened 2 years ago
Hi Guys, I thought I would add this DefCon presentation here: https://www.youtube.com/watch?app=desktop&si=H-Gg_EvgoP0sOncU&v=3T2Al3jdY38&feature=youtu.be
It goes in great details in explaining what vulnerabilities are open by allowing logging from untrusted sources.
Edit: The official OWASP link has good textual information, https://owasp.org/www-community/attacks/Log_Injection
Hi, as I already wrote in July (see https://github.com/aws-amplify/amplify-flutter/issues/3400) I need Cloudwatch in my project.
Do you have any timeline when the Cloudwatch support will be released for Flutter?
Thanks
Hi @dgagnon - thank you for shaing that presentation - it was very insightful (and fun) to watch! We will take that into account to try to see if there are ways to validate the source sending logs.
Hi @ibelz - we are finalizing some design decisions, we will provide an update on this issue when we have a timeline locked down.
@abdallahshaban557 Do you have any new information on Cloudwatch for Flutter?
Hi @abdallahshaban557 any updates on cloud watch flutter plugin ?
Hello @LightM2 and @sagnik-sanyal - I am no longer part of the Amplify team, but @NikaHsn and @ukhan-amazon can help out with future questions!
Hello @NikaHsn, any updates on Cloudwatch for Flutter?
This issue is being split of off from https://github.com/aws-amplify/amplify-flutter/issues/1208.
Orinal Request
Remote logging: send logs and metrics from mobile app to cloud for debugging and monitoring purpose, possibly cloudwatch as the solution.
Questions & Answers
Yes, I am more referring to the forntend log and metric in our mobile app, such as clickstream, response time, etc.
We are using the amplify logging already, but we would like to collect frontend log and metric as well
We are using analytic already, but we can not build alarm on those metrics. Additionally, analytic does not collect runtime log