WhiteSource SAST Security Report for Hard-coded Credentials (CWE 798)
Latest Scan: 2022-03-02 07:30pm
New Vulnerabilities: 1
Total Vulnerabilities: 3
Scan URL:WhiteSource SAST
Vulnerability Description
The application contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data
Store passwords, keys, and other credentials outside of the code in a strongly-protected, encrypted configuration file or database that is protected from access by all outsiders, including other local users on the same system. Properly protect the key. If you cannot use encryption to protect the file, then make sure that the permissions are as restrictive as possible
WhiteSource SAST Security Report for Hard-coded Credentials (CWE 798)
Latest Scan: 2022-03-02 07:30pm New Vulnerabilities: 1 Total Vulnerabilities: 3 Scan URL: WhiteSource SAST
Vulnerability Description
The application contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data
Compliance Standard Violations
Vulnerabilities
Details
org/owasp/webgoat/template/SampleAttack.java:45
### Snippet ```Java public class SampleAttack extends AssignmentEndpoint { String secretValue = "secr37Value"; ```Suppress Vulnerability
### Remediation RecommondationsSuppressed Vulnerabilities
None