Details

    • Type: Language-Specification
    • Status: Active
    • Resolution: Unresolved
    • Labels:
      None
    • Impact:
      Unknown 'null' severity
    • Likelihood:
      Unknown 'null' severity

      Description

      Sensitive Code Example

      $password = "65DBGgwe4uazdWQA"; // Sensitive
      
      $httpUrl = "https://example.domain?user=user&password=65DBGgwe4uazdWQA" // Sensitive
      $sshUrl = "ssh://user:65DBGgwe4uazdWQA@example.domain" // Sensitive
      

      Compliant Solution

      $user = getUser();
      $password = getPassword(); // Compliant
      
      $httpUrl = "https://example.domain?user=$user&password=$password" // Compliant
      $sshUrl = "ssh://$user:$password@example.domain" // Compliant
      

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            pierre-yves.nicolas Pierre-Yves Nicolas
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: