Security and privacy concerns configuring CCO Power BI Governance Dashboard v2.2

[J4YDH-73]

Hi Team,

We have published the CCO Power BI Governance Dashboard v2.2 report following the Options configuration in Power BI. Please confirm what confidential/sensitive information is exposed to unauthorised persons (Re Privacy Levels: Always ignore Privacy Level settings) and what extensions are enabled to load without validation or warning (Re Security: (Not Recommended) Allow any extension to load without validation or warning).

I have also seen the subscription/tenant ID saved in plain text within the report after configuring and connecting it.

Unfortunately I have been unable to find any Security policies or advisories within the security section https://github.com/Azure/ccodashboard/security

Please advise

Best Regards
Jay

[J4YDH-73]

Hi Team

Re: "Privacy Levels: Always ignore Privacy Level settings" and previous request - Please confirm that the organisational password is encrypted when sent

Thank you
Jay