Uploaded image for project: '[DEPRECATED] SonarQube AUTH GitHub'
  1. [DEPRECATED] SonarQube AUTH GitHub
  2. SQAUTHGITH-4

Vulnerability - GitHub properties must not be public

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 1.0
    • Fix Version/s: 1.1
    • Labels:
      None

      Description

      The properties sonar.auth.github.clientId and sonar.auth.github.clientSecret must be accessible only by administrators.

        Attachments

          Activity

            People

            • Assignee:
              simon.brandhof Simon Brandhof
              Reporter:
              simon.brandhof Simon Brandhof
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Due:
                Created:
                Updated:
                Resolved: