demo modeAI calls are disabled on this public site to keep it free. The plans, findings, and audits shown are mock examples — the product is real, this surface is just a static walkthrough.DM me for a live pilot
seniorify/ work
ready to signGH-547
live audit · martin brianmanager view →
task
GH-547Strip request body from the failure log; redact email and card pan with @acme/lo
submitted bymartin · 51d ago
plan
Strip request body from the failure log; redact email and card pan with @acme/log redactor.
status
ready to sign
conventions in scope
  • Use @acme/http for outbound calls; never axios or fetch directly.
  • Retries must use @acme/retry with idempotency-key header.
  • Logger: @acme/log only. No console.log in committed code.

findings

1
all clear· 1 decided
  • compliance·f_1addressed
    PII redaction approach aligns with team's logging compliance rule
    Stripping the request body from failure logs and applying @acme/log redactor for email and card PAN directly addresses the convention against logging PII. This is the right layer to enforce it and keeps the fix scoped.
    addressed
ready to sign