Skip to content

Add TRACE logging level for verbose payload logging across event writers #61

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add TRACE logging level for verbose payload logging across event writers #61

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions src/event_gate_lambda.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -43,6 +43,12 @@
except ImportError: # fallback when executed outside package context
import writer_eventbridge, writer_kafka, writer_postgres # type: ignore[no-redef]

# Register custom TRACE level before using LOG_LEVEL env var
try:
from .logging_levels import TRACE_LEVEL # noqa: F401
except Exception: # pragma: no cover - defensive
TRACE_LEVEL = 5 # type: ignore
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You can delete this import, since the TRACE_LEVEL variable is not used in the script.


# Import configuration directory symbols with explicit ImportError fallback
try:
from .conf_path import CONF_DIR, INVALID_CONF_ENV # type: ignore[no-redef]
Expand Down
21 changes: 21 additions & 0 deletions src/logging_levels.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
"""Custom logging levels.

Adds a TRACE level below DEBUG for very verbose payload logging.
"""

from __future__ import annotations
import logging

TRACE_LEVEL = 5

# Register level name only once (idempotent)
if not hasattr(logging, "TRACE"):
logging.addLevelName(TRACE_LEVEL, "TRACE")

def trace(self: logging.Logger, message: str, *args, **kws): # type: ignore[override]
if self.isEnabledFor(TRACE_LEVEL):
self._log(TRACE_LEVEL, message, args, **kws) # pylint: disable=protected-access

logging.Logger.trace = trace # type: ignore[attr-defined]

__all__ = ["TRACE_LEVEL"]
13 changes: 13 additions & 0 deletions src/writer_eventbridge.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,10 @@
import boto3
from botocore.exceptions import BotoCoreError, ClientError

# Ensure TRACE level is registered
from . import logging_levels # noqa: F401
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please I just want to understand, why there is unused import with (maybe) comment to ignore linting. I still got the warning from pylint, so the comment probably does not work.

from .logging_levels import TRACE_LEVEL

STATE: Dict[str, Any] = {"logger": logging.getLogger(__name__), "event_bus_arn": "", "client": None}


Expand Down Expand Up @@ -68,6 +72,15 @@ def write(topic_name: str, message: Dict[str, Any]) -> Tuple[bool, Optional[str]
logger.debug("EventBridge client not initialized - skipping")
return True, None

# TRACE-level payload logging
if logger.isEnabledFor(TRACE_LEVEL):
try:
logger.trace( # type: ignore[attr-defined]
"EventBridge payload topic=%s payload=%s", topic_name, json.dumps(message, separators=(",", ":"))
)
except Exception: # pragma: no cover - defensive serialization guard
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
except Exception: # pragma: no cover - defensive serialization guard
except (TypeError, ValueError): # pragma: no cover - defensive serialization guard

logger.trace("EventBridge payload topic=%s <unserializable>", topic_name) # type: ignore[attr-defined]

Comment on lines +75 to +83
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Verification agent

🧩 Analysis chain

Guard against PII/large payloads at TRACE.

Add configurable redaction and a size cap to avoid leaking secrets and unbounded log volume.

🏁 Script executed:

#!/bin/bash
# Find all TRACE payload logging sites to update consistently.
rg -nP --type=py -C2 'payload topic=%s payload=%s'

Length of output: 1215

Implement configurable redaction + size cap for TRACE payload logs

Raw payload JSON is being logged at TRACE (can leak PII and create unbounded log volume). Fix by centralizing safe serialization and applying it consistently.

  • Add a centralized safe_serialize_for_log(message, redact_keys, max_bytes) that: redacts configured sensitive keys (nested), truncates output to max_bytes (append "..."), and returns "" on serialization errors.
  • Replace raw json.dumps(...) at: src/writer_eventbridge.py:79, src/writer_kafka.py:101, src/writer_postgres.py:281 to use the helper.
  • Make redact_keys and max_bytes configurable (env/config) and add unit tests for redaction, truncation, and unserializable fallback.
🧰 Tools
🪛 Ruff (0.12.2)

81-81: Do not catch blind exception: Exception

(BLE001)

try:
logger.debug("Sending to eventBridge %s", topic_name)
response = client.put_events(
Expand Down
12 changes: 12 additions & 0 deletions src/writer_kafka.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,9 @@

from confluent_kafka import Producer

# Add TRACE level import
from .logging_levels import TRACE_LEVEL # type: ignore

try: # KafkaException may not exist in stubbed test module
from confluent_kafka import KafkaException # type: ignore
except (ImportError, ModuleNotFoundError): # pragma: no cover - fallback for test stub
Expand Down Expand Up @@ -91,6 +94,15 @@ def write(topic_name: str, message: Dict[str, Any]) -> Tuple[bool, Optional[str]
logger.debug("Kafka producer not initialized - skipping")
return True, None

# TRACE-level payload logging prior to produce
if logger.isEnabledFor(TRACE_LEVEL):
try:
logger.trace( # type: ignore[attr-defined]
"Kafka payload topic=%s payload=%s", topic_name, json.dumps(message, separators=(",", ":"))
)
except Exception: # pragma: no cover - defensive
Copy link
Collaborator

@tmikula-dev tmikula-dev Oct 29, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
except Exception: # pragma: no cover - defensive
except (TypeError, ValueError): # pragma: no cover - defensive serialization guard

logger.trace("Kafka payload topic=%s <unserializable>", topic_name) # type: ignore[attr-defined]

Comment on lines +97 to +105
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Consider payload size/PII guard at TRACE.

Even at TRACE, raw payloads can contain secrets/PII and blow up log volume. Add a redaction/cap mechanism (e.g., redact keys list + max length).

Would you like a small helper (e.g., safe_payload_str(payload, redact_keys, max_len=10000)) used by all writers?

🧰 Tools
🪛 Ruff (0.12.2)

103-103: Do not catch blind exception: Exception

(BLE001)

🤖 Prompt for AI Agents 
In src/writer_kafka.py around lines 97 to 105, the TRACE-level payload log
prints raw message which can expose PII and produce huge logs; replace direct
json.dumps with a call to a shared helper like safe_payload_str(payload,
redact_keys, max_len=10000) that: 1) redacts configured sensitive keys (support
nested keys) by replacing values with "<REDACTED>", 2) truncates the resulting
string to max_len and appends "...(truncated)" if exceeded, 3) gracefully
handles non-serializable objects by falling back to a compact representation
(e.g., repr) and 4) never raises (wrap in try/except and return
"<unserializable>" on failure); call this helper when logging TRACE payloads and
add a TODO/config entry for redact_keys so other writers can reuse it.

errors: list[Any] = []
try:
logger.debug("Sending to kafka %s", topic_name)
Expand Down
12 changes: 12 additions & 0 deletions src/writer_postgres.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,9 @@
except ImportError: # pragma: no cover - environment without psycopg2
psycopg2 = None # type: ignore

# Ensure TRACE level is registered
from .logging_levels import TRACE_LEVEL # type: ignore

# Define a unified psycopg2 error base for safe exception handling even if psycopg2 missing
if psycopg2 is not None: # type: ignore
try: # pragma: no cover - attribute presence depends on installed psycopg2 variant
Expand Down Expand Up @@ -271,6 +274,15 @@ def write(topic_name: str, message: Dict[str, Any]) -> Tuple[bool, Optional[str]
_logger.debug("psycopg2 not available - skipping actual Postgres write")
return True, None

# TRACE-level payload logging (only when we intend to write)
if _logger.isEnabledFor(TRACE_LEVEL):
try:
_logger.trace( # type: ignore[attr-defined]
"Postgres payload topic=%s payload=%s", topic_name, json.dumps(message, separators=(",", ":"))
)
except Exception: # pragma: no cover - defensive
Copy link
Collaborator

@tmikula-dev tmikula-dev Oct 29, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
except Exception: # pragma: no cover - defensive
except (TypeError, ValueError): # pragma: no cover - defensive serialization guard

_logger.trace("Postgres payload topic=%s <unserializable>", topic_name) # type: ignore[attr-defined]
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please why the logger in this script starts with _?


Comment on lines +277 to +285
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

TRACE payloads may leak sensitive fields.

Introduce optional redaction (configurable list of keys) and an upper bound on logged payload length.

I can add a shared trace_payload(logger, backend, topic, message, redact=("password","token"), max_len=10000) helper in logging_levels.py and use it across writers. Want me to draft it?

🧰 Tools
🪛 Ruff (0.12.2)

283-283: Do not catch blind exception: Exception

(BLE001)

with psycopg2.connect( # type: ignore[attr-defined]
database=POSTGRES["database"],
host=POSTGRES["host"],
Expand Down
86 changes: 86 additions & 0 deletions tests/test_trace_logging.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,86 @@
import logging
from unittest.mock import MagicMock

from src.logging_levels import TRACE_LEVEL
import src.writer_eventbridge as we
import src.writer_kafka as wk
import src.writer_postgres as wp


def test_trace_eventbridge(caplog):
logger = logging.getLogger("trace.eventbridge")
logger.setLevel(TRACE_LEVEL)
we.STATE["logger"] = logger
we.STATE["event_bus_arn"] = "arn:aws:events:region:acct:event-bus/test"
mock_client = MagicMock()
mock_client.put_events.return_value = {"FailedEntryCount": 0, "Entries": []}
we.STATE["client"] = mock_client
caplog.set_level(TRACE_LEVEL)
ok, err = we.write("topic.eb", {"k": 1})
assert ok and err is None
assert any("EventBridge payload" in rec.message for rec in caplog.records)


def test_trace_kafka(caplog):
class FakeProducer:
def produce(self, *a, **kw):
cb = kw.get("callback")
if cb:
cb(None, object())

def flush(self, *a, **kw): # noqa: D401
return 0

logger = logging.getLogger("trace.kafka")
logger.setLevel(TRACE_LEVEL)
wk.STATE["logger"] = logger
wk.STATE["producer"] = FakeProducer()
caplog.set_level(TRACE_LEVEL)
ok, err = wk.write("topic.kf", {"k": 2})
assert ok and err is None
assert any("Kafka payload" in rec.message for rec in caplog.records)


def test_trace_postgres(caplog, monkeypatch):
# Prepare dummy psycopg2 connection machinery
store = []

class DummyCursor:
def execute(self, sql, params):
store.append((sql, params))

def __enter__(self):
return self

def __exit__(self, exc_type, exc, tb):
return False

class DummyConnection:
def cursor(self):
return DummyCursor()

def commit(self):
pass

def __enter__(self):
return self

def __exit__(self, exc_type, exc, tb):
return False

class DummyPsycopg2:
def connect(self, **kwargs): # noqa: D401
return DummyConnection()

monkeypatch.setattr(wp, "psycopg2", DummyPsycopg2())

logger = logging.getLogger("trace.postgres")
logger.setLevel(TRACE_LEVEL)
wp._logger = logger # type: ignore
wp.POSTGRES = {"database": "db", "host": "h", "user": "u", "password": "p", "port": 5432}

caplog.set_level(TRACE_LEVEL)
message = {"event_id": "e", "tenant_id": "t", "source_app": "a", "environment": "dev", "timestamp": 1}
ok, err = wp.write("public.cps.za.test", message)
assert ok and err is None
assert any("Postgres payload" in rec.message for rec in caplog.records)
Loading