Security enhancements

[jongpie]

This PR covers a few items that don't have issues logged, but handle a few security-related enhancements I've been considering for a few months (years??)

• 🥉 3rd place: LoggerAdmin permission set now has access to all custom metadata types included in the repo. Is this a bugfix, or is this an enhancement? Who can say?! But all CMDT objects are now included.

• 🥈 2nd place: new setting LoggerSettings__c.StripInaccessibleRecordFields__c - Disabled by default, when enabled, any time an SObject record is logged (or a List<SObject> is logged), only fields that the current user can access will be included in the record's JSON. This is useful in orgs where end-users have access to view Log__c and LogEntry__c records.

• 🥇 1st place: data masking for log entry messages. Enabled by default, regex-based CMDT rules can be configured to automatically mask sensitive data in the Message__c and RecordJson__c fields. Pre-built rules are included for credit card numbers and social security numbers - additional rules can be configured by creating additional LogEntryDataMaskRule__mdt records.

  • New LoggerSettings__c fields: ApplyDataMaskRules__c and StripInaccessibleRecordFields__c

    

  • New custom metadata type LogEntryDataMaskRule__mdt list view, showing the included rules

    

  • Example log entries with masked data - the 1st two entries shows masked credit card numbers, and the 3rd entry shows a masked social security number

    

Other included changes:

• Fixed Null Record causes error #198 Made record & records parameters optional in FlowRecordLogEntry & FlowCollectionLogEntry (respectively) to handle situations where null is passed (e.g., Get Records returns null for no matches, instead of an empty list)
• Fixed Log but no entries #199 - Changed FlowDescription__c.field to long text area + added automatic field-truncation for LogEntry__c inserts + added a ridiculously long description to one of the Flows in nebula-logger-recipes
• Switched to using custom getters for all constants in LogEntryEventBuilder that involve queries - this prevents the queries from executing if logging is disabled for the current user
• Added a private method setTransactionDetails() in LogEntryEventBuilder to defer setting some transactional details until absolutely necessary - this helps minimize heap size/avoid using some of the heap size limit until needed
• Updated Apex docs
• Made fancier buttons that include the release number
• Enabled some user management settings in scratch definition files
• Cleaned up a few areas in README
• Added 'Code Quality Tests' to deploy.yml + ran prettier
• Setup ESLint for lwc + fixed some reported issues
• @jamessimone setup PMD rules & apex-scanner plugin + fixed some reported issues (via PR Added static code analysis / PMD #201)
• Reenabled Codecov.io integration in pipeline
• Removed some unused scripts in package.json