Sentry-javascript: Feature scrubbing sensitive data support with `sanitizeKeys`

Created on 24 Jan 2020 · 3Comments · Source: getsentry/sentry-javascript

Is there a plan to support sanitizing data before send to the server? The following comment was found at #1564 but the issue was closed, so we would like to confirm the current status.

We will soon release a new way of how to strip sensitive data in SDKs, stay tuned.

https://github.com/getsentry/sentry-javascript/issues/1564#issuecomment-423894813

background

Current JavaScript SDK does not support this feature, users manually filter with beforeSend callback according to document. However former Raven.js supports this feature with sanitizeKeys, document here. And also other SDK supports this feature for example Ruby's SDK provides sanitize_fields.

It's worth to support this feature in new SDK when the user migrate from Raven.js to new Sentry SDK, or decide to use which SDK in new project.

Related resources

related question
- https://github.com/getsentry/sentry-javascript/issues/1564
sanitizeKeys option in Raven.js
- https://github.com/getsentry/sentry-docs/blob/d722b441ba929f950cdc46be602a8f3288853b98/src/collections/_documentation/clients/javascript/config.md
Ruby SDK provides sanitize_fields
- https://docs.sentry.io/clients/ruby/config/

Help Wanted Feature

Source

ma2gedev

Most helpful comment

Hey, thanks for writing very detailed issue. We were thinking about adding this early on, however, it's not a very commonly used feature. And we already have a hard time to stay compact.
This is a very good candidate for an external integration that could be pulled down and configured from @sentry/integrations. Pull request would be much more than welcome :)