Europa IT platform

Website users’ private data sanitisation in development environments is important to ensure user data protection. DIGIT provides developers with access to sanitised versions of production databases to work in the development environments of websites hosted in the Drupal infrastructure. Sanitisation of default Drupal private information on production databases such as e-mails or passwords is done automatically. However, additional private or sensitive data stored in customised database tables and fields is not sanitised automatically. For this reason, when copying production databases to development environments, developers need to check if there are customised fields or modules that include user identifiable data (name, address, company, gender, etc.) or specific sensitive data which needs protection. In that case, they need to include appropriate sanitisation code in the Drush sanitise hooks to ensure sanitisation of that private or sensitive data.

Check the documentation on how to sanitise private data on Drupal 7, 8 and 9 projects.

From 1 May, DIGIT Quality Assurance team will include private data sanitisation verification as part of the code review process.

From 1 May, the latest version of Toolkit will be enforced. This will introduce some fixes to improve the component check such as, checking if mandatory modules are active and checking if an insecure package can be allowed (e.g., remote_stream_wrapper). The update to this version is transparent for developers and no changes to project configuration are required.

To stay updated on Toolkit release information, you can subscribe to the notifications on the Toolkit page in Github.

The Drupal infrastructure related with deployments will be in maintenance mode on 3 May from 6.00 to 8.00 AM due to a version upgrade of Gitlab.
The expected impact during this time frame is:

• No deployments will be possible on Gitlab and Drone
• Unavailability of access to Gitlab services