What severity is GCI0029?

GCI0029 is a Warn severity rule. Warn rules are reported but do not block the commit unless exitOn is set to Warn in .gauntletci.json.

How do I disable GCI0029?

Add the rule to .gauntletci.json: { "rules": { "GCI0029": { "enabled": false } } }. You can also override the severity to Block or Warn without disabling the rule. See the Configuration docs at https://gauntletci.com/docs/configuration for the full schema.

All rules

GCI0029WarnSecurity

PII Entity Logging Leak

Detects PII-sensitive terms (email, SSN, password, etc.) appearing inside log calls in added lines.

Why this rule exists

Logs end up in third-party aggregators, support tickets, and analytics pipelines. PII in a log line is PII in every downstream system, often outside the compliance perimeter.

Code example

Triggers the rule

+ _logger.LogInformation("Login attempt: email={Email}, password={Password}", email, password);

Passes the rule

+ _logger.LogInformation("Login attempt: userId={UserId}", user.Id);

Configuration

Disable or adjust the severity of this rule in .gauntletci.json:

{
  "rules": {
    "GCI0029": { "enabled": true, "severity": "Warn" }
  }
}

See Configuration for the full schema.

Related rules

GCI0010Block

About the author

Eric Cogen -- Founder, GauntletCI

Twenty years as a senior technical consultant building and modernizing enterprise platforms across .NET, AWS, serverless, microservices, and AI-driven systems.

@EricCogen/GauntletCI on GitHub/More about Eric

PII Entity Logging Leak

Why this rule exists

Code example

Configuration

Related rules

Hardcoding and Configuration

Security Risk

Error Handling Integrity