We recently detected unexpected behavior when a user first accesses our organization on Sonar. We are using user sync from GitHub.
We have detected that it includes a random suffix (it looks like an identifier) after username. This means that the IaC automations that we have implemented have begun to fail since the login is never known what it really is.
We can see an example in the following screenshot:
For our part, we would like to emphasize that we have some automations that carry out this synchronization and they have been broken for this reason. It is a disruptive change, which I think you should warn about or, at least, document.
Is it possible that these types of new changes will occur again? Do we have any way of finding out to be warned?