chore: [util/dex|glob] Add security logging

[my-git9]

[util/dex|glob] Add security logging

Checklist:

• Either (a) I've created an enhancement proposal and discussed it with the community, (b) this is a bug fix, or (c) this does not need to be in the release notes.
• The title of the PR states what changed and the related issues number (used for the release note).
• I've included "Closes [ISSUE #]" or "Fixes [ISSUE #]" in the description to automatically close the associated issue.
• I've updated both the CLI and UI to expose my feature, or I plan to submit a second PR with them.
• Does this PR require documentation updates?
• I've updated documentation as required by this PR.
• Optional. My organization is added to USERS.md.
• I have signed off all my commits as required by DCO
• I have written unit and/or e2e tests for my change. PRs without these are unlikely to be merged.
• My build is green (troubleshooting builds).

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 45.68%. Comparing base (a23bfc3) to head (862349f).
Report is 2599 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #10455      +/-   ##
==========================================
- Coverage   45.76%   45.68%   -0.08%     
==========================================
  Files         233      236       +3     
  Lines       28401    28670     +269     
==========================================
+ Hits        12998    13099     +101     
- Misses      13629    13779     +150     
- Partials     1774     1792      +18     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[jannfis]

Thanks @my-git9

Can you please elaborate a little on the security impact of these errors, i.e. why should they emit a security log event? Thanks!

[my-git9]

Thanks @my-git9

Can you please elaborate a little on the security impact of these errors, i.e. why should they emit a security log event? Thanks!
Discussions and PRs about security logs are here, please see
#10361 (comment)
#10256

[jannfis]

Yes, thanks, I'm aware of this. I was just wondering how the parts of the code you are adding it to are relevant to emit security logging?

Just trying to understand the reasoning behind this particular change.

[notfromstatefarm]

The dex error I can see being useful for security logging - dex is a wholly security-related service. However, logging any time a glob fails to compile anywhere in our codebase doesn't seem security-related.

[my-git9]

I see, I'll tweak the code a bit

[my-git9]

@notfromstatefarm @jannfis I'm sorry, I don't know enough about security logs. Can you think of this?

[crenshaw-dev]

Thanks @my-git9!