Users asked to add Snyk to monitor vulnerabilities in 3rd packages.
Also, since I'm working on Checkmarx, maybe I can get a license.
If not, I still think about writing a Semmle Query to make sure the credentials not passing outside (to the log or monitoring system, for example) without sanitizing.
Users asked to add Snyk to monitor vulnerabilities in 3rd packages.
Also, since I'm working on Checkmarx, maybe I can get a license.
If not, I still think about writing a Semmle Query to make sure the credentials not passing outside (to the log or monitoring system, for example) without sanitizing.