• BearOfaTime@lemm.ee
    link
    fedilink
    arrow-up
    1
    ·
    2 months ago

    I generally agree.

    But any decent code review process would’ve exposed this, or at least a data surveillance system that checks this stuff. I’ve received a few notifications about my logs storing inappropriate data, as a result of a scanning system.

    Some manager knew about this during a code review, and signed off on the risk because it was only in-house.