GitHub user ppkarwasz added a comment to the discussion: Threat model: how should Thread Context (MDC) keys be classified (trusted structural or untrusted content)?
You would be surprised on how many SIEM systems don't use a structured layout: https://docs.cloud.google.com/logging/docs/agent/ops-agent/third-party Most of those applications use a derivative of `PatternLayout` and the Ops Agent tries to parse them instead of recommending users to switch to a structured layout. GitHub link: https://github.com/apache/logging-log4j2/discussions/4132#discussioncomment-17156311 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
