When ever we are writing a log message using log-message in the activity, we have observed in PEGA 8.4.1 that it is throwing a warning with the name ‘pzPreventSensitiveDataInLogs’ as it is impacting my application score.
Can anyone suggest how can we prevent this warning as we need to capture few exceptions as per our business requirement?
That is an informational guardrail warning that shouldn’t affect your guardrail score. You’re meant to justify the warning by explaining how it was verified that no sensitive information can leak into the logs via the log message.
@PrathyushaJ8019 … I agree with @BrettAllen on this one.
Consider Informational guardrail warnings as reminders (which don’t affect your guardrail score) of something that needs to be done as a result of the configuration you have. Implementing unit test cases is another example. It’s generally a good idea, but you may already do the same test in a calling rule and not need the same test a second time, so that would be your justification.
Thank you BraamCLSA and BrettAllen for the update. We will give correct justification and it is good learning for us that it won’t impact the score.