LGTM.com - false positive - Django username logging

github / codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

https://codeql.github.com

MIT License

7.67k stars 1.54k forks source link

LGTM.com - false positive - Django username logging #7116

Open artoonie opened 2 years ago

artoonie commented 2 years ago

Description of the false positive

Django username logging isn't sensitive data. I see a few other similar reports but non specifically on django username.

URL to the alert on the project page on LGTM.com

tausbn commented 2 years ago

Thank you for your report!

I agree that this is a false positive. I have added this to our internal tracking issue. Hopefully we should have a fix for this in the not too distant future.