Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-14533

Improve SonarPython analysis: +5 security rules

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 8.8
    • Component/s: None
    • Edition:
      Community
    • Production Notes:
      None

      Description

      • S2257: Using non-standard cryptographic algorithms is security-sensitive
      • S2612: Setting loose POSIX file permissions is security-sensitive
      • S3329: Cypher Block Chaining IV's should be random and unique
      • S5659: JWT should be signed and verified with strong cipher algorithms
      • S3752: Allowing both safe and unsafe HTTP methods is security-sensitive

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              wouter.admiraal Wouter Admiraal
              Reporter:
              sonarqube.tech SonarQube Technical user
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Due:
                Created:
                Updated:
                Resolved: