Skip to content

fix(notifications): stop logging recipient email (CodeQL #27)#1314

Merged
iammukeshm merged 1 commit into
mainfrom
fix/codeql-27-billing-email-pii
Jun 25, 2026
Merged

fix(notifications): stop logging recipient email (CodeQL #27)#1314
iammukeshm merged 1 commit into
mainfrom
fix/codeql-27-billing-email-pii

Conversation

@iammukeshm

@iammukeshm iammukeshm commented Jun 25, 2026

Copy link
Copy Markdown
Member

What

Resolves CodeQL cs/exposure-of-sensitive-information (alert #27, CWE-359, medium).

BillingEmailSender.SendAsync logged the raw recipient address on a delivery failure ("Failed to send {Context} email to {Email}"), writing PII to an external sink (the log). The {Email} placeholder is dropped; {Context} already identifies the operation for debugging.

Why this is safe

The email is still used to actually send the message — only the log statement changed. No behavior change beyond log content.

🤖 Generated with Claude Code

@iammukeshm @claude
fix(notifications): stop logging recipient email in BillingEmailSender
f85366b 
Resolves CodeQL cs/exposure-of-sensitive-information (alert #27). The
delivery-failure warning logged the raw recipient address, writing PII to
an external sink (the log). Drop {Email} from the template; {Context}
already identifies the operation for debugging.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
@iammukeshm iammukeshm merged commit e546d35 into main Jun 25, 2026
16 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@iammukeshm