[superjan]

Yeah, along those lines we have requirements on never logging PII, and not logging anything that potentially contains PII, such as folder names.

[justinclift]

Maybe tokenise the PII part of the folder name when outputting it?

ie `$HOME`/.config/foo/stuff.cfg` rather than `/home/joebloggs/foo/stuff.cfg`?

[Terr_]

Or have an encrypted data portion, so that the sensitive details can be revealed as-needed, and redaction occurs by rotating a key.

Obviously that depends on the messages being infrequent in production logging levels.