Open bruno-garcia opened 2 years ago
We need to update documentation to explain that user need to use parameterised queries instead of writing filter values direct in the query, because this may leak PII.
There's been 3 recent RFCs about scrubbing and documenting PII:
This issue should be re-written to take the outcome of the RFCs into account.
If we just take the raw SQL (or ORMs such as AndroidX Room, Apple Core Data, .NET EF) and add to Sentry events. In the form of crumbs or spans, it can leak PII
We need to have some guidelines for SDK engineers. Similar to the HTTP one on the develop docs. There we can point out possible pitfalls and what's suggested in such cases.
Some open questions:
sendDefaultPii
is true?data
bag? Perhaps also only behind thesendDefaultPii
?beforeBreadcrumb
? For transactions do we require an event processor or is there a hook?Some notes from @untitaker: