Details

    • Type: Language-Specification
    • Status: Active
    • Resolution: Unresolved
    • Labels:
      None
    • Impact:
      Unknown 'null' severity
    • Likelihood:
      Unknown 'null' severity

      Description

      Sensitive Code Example

      Django

      from django.conf import settings
      
      settings.configure(DEBUG=True)  # Sensitive when set to True
      settings.configure(DEBUG_PROPAGATE_EXCEPTIONS=True)  # Sensitive when set to True
      
      def custom_config(config):
          settings.configure(default_settings=config, DEBUG=True)  # Sensitive
      

      Django's "global_settings.py" configuration file

      # NOTE: The following code raises issues only if the file is named "settings.py". This is the default
      # name of Django configuration file
      
      DEBUG = True  # Sensitive
      DEBUG_PROPAGATE_EXCEPTIONS = True  # Sensitive
      

      Flask

      from flask import Flask
      
      app = Flask(__name__)
      
      app.testing = True  # Questionable
      app.debug = True  # Questionable
      
      app.run(debug=True) # Questionable
      

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              nicolas.harraudeau Nicolas Harraudeau
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: