The CerbiStream SDK hooks into your logging provider at application startup — no sidecar, no proxy, no network hop. When your code calls logger.LogInformation(...), the message and structured fields are handed to the CerbiStream middleware before they reach any output sink. The middleware loads the active profile, evaluates each field, assembles the governed payload, and passes that to the sink. The raw payload is discarded in memory. It is never written anywhere.

Below is the full evaluation of the checkout log. Each row is one field. The runtime processes them in order: load the profile, check disallowedFields, check requiredFields, pass everything else. Click any row to read the exact reason for the decision.

After the pipeline runs, the runtime assembles the governed payload. This is the only version of the log that any output sink ever sees — Datadog, Elasticsearch, CloudWatch, S3, wherever you route logs. The raw value of creditCardNumber exists nowhere outside your application process. It was never serialised. It was never written to disk or network.

{
  "userId": "user-4281",
  "creditCardNumber": "4111111111111111",
  "message": "Checkout started..."
  // correlationId: missing
  // eventName:     missing
}

{
  "userId": "user-4281",
  "creditCardNumber": "REDACTED",
  "message": "Checkout started..."
  // correlationId: absent → Medium violation
  // eventName:     absent → Medium violation
}