[sql] Add option to sanitize db.query.text
#2221
Assignees
Labels
comp:instrumentation.sqlclient
Things related to OpenTelemetry.Instrumentation.SqlClient
enhancement
New feature or request
Milestone
Comments
github-actions
bot
added
the
comp:instrumentation.sqlclient
alanwest
changed the title
db.query.textdb.query.text
alanwest
changed the title
db.query.textdb.query.text
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Component
OpenTelemetry.Instrumentation.SqlClient
What is the expected behavior?
The collection of
db.query.textis opt-in because it runs the risk of collecting sensitive information. Collectingdb.query.textis often very valuable to end users. However, the only choices being a) not collecting it or b) risk exposing sensitive information is inadequate.The instrumentation needs to offer a way to sanitize
db.query.textallowing users to collect it without the risk of exposing sensitive information.Sanitizing
db.query.textis a costly operation. What this issue does not attempt to address is whether sanitization and collection ofdb.query.textshould be on by default. For now, it should be implemented as opt-in, though later we should decide whether it should be on by default.The text was updated successfully, but these errors were encountered: