This repository has been archived by the owner. It is now read-only.
Is the Express-PouchDB logger leaking potentially private data? #52
Comments
looks like the majority of the logging is only when the log level is set to debug. I assume this configuration would not be used in production. Is this really a concern? |
This bug checks a few things:
|
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
The logger built into Express-PouchDB logs things like IP addresses, methods, request params, headers and status codes. It's not clear if all of this is potentially a data leakage scenario where it's info we shouldn't really be keeping.
The text was updated successfully, but these errors were encountered: