-
**Use_of_Hardcoded_Password** issue exists @ **iGoat-Swift/iGoat-Swift/Source/Exercises/InsecureLocalDataStorage/PlistStorage/Credentials.plist** in branch **master**
*The application uses a single…
-
Path: devsecops-sandbox/test-case/policy-warning-workflow/main.tf
Line: master_password = "PayPay1234!@#$"
Message: RDS instance or cluster with hardcoded credentials in source code. It is recomme…
-
**Is your feature request related to a problem? Please describe.**
The Elasticsearch authentication on resource-level `elasticsearch_connection` will be deprecated, which forces the usage of a provid…
-
## Overview
Forgive me if this is already present, I can't find it documented anywhere, I am also not wildly experienced with Kubernetes so this may be obvious to others but not for the uninitiated.
…
-
### Context
I maintain a site that operates on multiple subdomains as a way of separating content. I wish to serve content used by Turbo Frames from the apex for caching reasons. While setting this…
-
Hello,
While I was trying to implement h2database for my personal project one function seemed to be vulnerable.
According to my CI tool it states that [JakartaDbStarter.java](https://github.com/h…
-
Your token and access keys for the Twitter API are hardcoded in your ipynb in CDFW/Bears. You should fix that so people don't have access to your Twitter API credentials.
-
##### Description
The initial implementation for Apex supports only remote site settings. That leads to the issue that the developer has to hardcode authentication credentials into the Apex classes…
-
Right now the command `assume some-profile --export` stores the temporary credentials in `.aws/credentials` into profile `some-profile-tmp`.
Would be a nice to have feature to be able to specify th…
-
The openvpn experiment depends on the newer endpoint we deployed a few months ago in the staging backend. To be able to test the release candidates, we need to deploy the service in production.