We wanted to understand will sonar be able to figure out that user is trying to log PIC, PII data and hence flags it as a blocker. If yes, wanted to understand how to achieve the same.
Kindly help me on this
Hello Lokesh,
no, unfortunately at the moment it is not possible to detect PII logging with our tools. Could you please elaborate what you were thinking of exactly, e.g. what languages, frameworks, type of logging, …? I am also not sure what PIC stands for.
There is a related ticket that was not implemented yet, RSPEC-5757, is this what you had in mind? Thanks!
2 Likes