From 578df1b37aef0be9b5c4b7edc4c0af728968aaf4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Juan=20Mart=C3=ADn=20Sotuyo=20Dodero?= <jmsotuyo@monits.com>
Date: Wed, 14 Dec 2016 17:38:11 -0300
Subject: [PATCH] Update changelog

---
 src/site/markdown/overview/changelog.md | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/site/markdown/overview/changelog.md b/src/site/markdown/overview/changelog.md
index a7981d1f53..b2c69b60c8 100644
--- a/src/site/markdown/overview/changelog.md
+++ b/src/site/markdown/overview/changelog.md
@@ -136,9 +136,14 @@ public class Foo {
 
 ##### ApexDangerousMethods
 
-Checks against calling dangerous methods. For the time being, it only reports against
-`FinancialForce`'s `Configuration.disableTriggerCRUDSecurity()`. Disabling CRUD security
+Checks against calling dangerous methods.
+
+For the time being, it reports:
+
+* Against `FinancialForce`'s `Configuration.disableTriggerCRUDSecurity()`. Disabling CRUD security
 opens the door to several attacks and requires manual validation, which is unreliable.
+* Calling `System.debug` passing sensible data as parameter, which could lead to exposure
+of private data.
 
 ##### ApexInsecureEndpoint
 
@@ -232,4 +237,5 @@ to avoid XSS attacks.
 *   [#154](https://github.com/pmd/pmd/pull/154): \[java] Fix #1547: UnusedImports: Adjust regex to support underscores
 *   [#158](https://github.com/pmd/pmd/pull/158): \[apex] Reducing FPs in SOQL with VF getter methods
 *   [#160](https://github.com/pmd/pmd/pull/160): \[apex] Flagging of dangerous method call
+*   [#163](https://github.com/pmd/pmd/pull/163): \[apex] Flagging of System.debug