Three data exposure points were identified and need addressing:
| Location |
Risk |
Fix |
obfuscate.go:65 |
fmt.Println writes raw SQL attribute values from XML query plans to stdout |
Replace with "?" placeholder; plan processing continues |
scraper.go:970 (retrieveValue) |
logger.Error includes row[column] -- the raw unobfuscated value |
Change to omit raw value from log; downgraded to Warn |
scraper.go:930 (debug log) |
fmt.Sprintf embeds entire raw row map including query_text and query_plan |
Convert to structured zap fields (still Debug-only) |
Three data exposure points were identified and need addressing:
obfuscate.go:65fmt.Printlnwrites raw SQL attribute values from XML query plans to stdout"?"placeholder; plan processing continuesscraper.go:970(retrieveValue)logger.Errorincludesrow[column]-- the raw unobfuscated valuescraper.go:930(debug log)fmt.Sprintfembeds entire raw row map includingquery_textandquery_plan