AlinsRan opened a new pull request, #13502: URL: https://github.com/apache/apisix/pull/13502
### Description Follow-up to #13205. That PR removed `core.log.info`/`debug` statements that print the full serialized log payload from `sls-logger`, `tcp-logger` and `udp-logger`, but two plugins with the **same pattern** were left untouched: - `apisix/plugins/elasticsearch-logger.lua` — logged `uri` and the full bulk `body` (the serialized log entries, which by default include request/response headers and bodies). - `apisix/plugins/syslog/init.lua` — logged the full RFC5424 payload (`collect_data`) and every buffered entry (`buffered logs`). These messages can leak credentials (e.g. `Authorization`/`Cookie` headers) and other sensitive request/response data into the error log when the log level is set to `info`/`debug`. This PR removes them, consistent with #13205. No production behavior changes besides the removed log lines; no test relies on these strings. ### Checklist - [x] I have explained the need for this PR and the problem it solves - [x] I have explained the changes or the new features added to this PR - [ ] I have added tests corresponding to this change - [x] I have updated the documentation to reflect this change (N/A) - [x] I have verified that the changes pass the existing tests -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
