I have come across an issue, where I want to detect if any of my grafana data sources have secrets in their logs.
Is there any way or query that we can run on grafana on a daily basis and it will check any of the secrets or sensitive information of each data source logs?
Are there any plugins we can install into grafana that we can connect with each data source that plugin will run daily because grafana actually accesses Cloudwatch logs or google cloud logs in real-time, it doesn’t store logs.
Why I want because the tomcat container is printing environment variables into logs and grafana will access those logs in real-time, so prevent can we run such a query?
I understand that. But a systemically more appropriate solution is to solve it at the level of the source itself and not at the end of the chain - besides, individual implementations of plugins and datasources themselves do not reflect changes so quickly.
Hey, you are saying correct. I am just trying to use a method for my own satisfaction level we can set an alert for every data source and run a query which detects some “” from logs.
But little bit confused that if a data source has many log groups, would the query that I am writing to detect “” run for every log group of that data source?
You can check from my below screenshot. I am just fetching “Runtime Version ARN” from the logs lines and setting it as an alert.
I just want to know the method I am implementing , is this correct method or not?
