Cyber/CY017- Resuable Logging Function#187
Open
Sayek17 wants to merge 32 commits into
Open
Conversation
…and risk/integration assessment
…remove unnecessary compiled files
- Removed outdated validation datasets and reports. - Deleted unnecessary validation scripts and requirements. - Introduced a new unified cleaning pipeline with enhanced configuration. - Added comprehensive logging for cleaning and validation processes. - Implemented type conversion, missing value handling, and duplicate removal in the cleaning pipeline. - Enhanced validation checks with detailed issue reporting. - Created new input and output CSV files for testing the pipeline. - Added comparison reports to summarize data cleaning results.
This reverts commit 782d3cb.
…figuration options
…ts-folder Create Datasets folder
Sprint 1 Done
…Source tables and added documentation file to folder
…Schema-Updates Updated Create Schema SQL to reflect latest changes to User and DAta …
…ow for duplicates, payload 5KB cap and restriction escalation model
…Enterprises/Phoenix into cyber/secure-design-isa
Sayek17
requested review from
JackSpiers117,
Jessica-Kakshapati,
SunainM and
s222530306
as code owners
Sayek17
changed the title
Jessica-Kakshapati
approved these changes
May 9, 2026
Typed event model, 8 helpers over logSecurityEvent(), pluggable LogTransport (default NDJSON), Express context helper, sanitisation with secret redaction. Observational only — no blocking decisions. Future work: middleware integration, persistent-violation monitor, DB/SIEM transports, tests.
Collaborator
Author
CY017: Reusable security logging function - implementationThis PR delivers the reusable security logging function specified in the CY017 design document as working TypeScript for the Node.js + Express stack. The component records security decisions made by other backend controls (authentication, JWT validation, RBAC, validation, rate limiting, throttling, duplicate detection, monitoring). It is intentionally observational ; it does not decide whether to block, delay, accept, flag or escalate a request. Those decisions belong to the controls that own them. The intent is to land the implementation in What is in this PR
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
8 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Added CY017 Reusable Logging Function/Module Design. Now working my way through TypeScript/Express implementation for the reusable logging module to track suspicious activity in the system. Previously added CY010 Spam Alert Prevention, CY010 Document Rules and Revised API Design.