[RMB-279] Fix false positive password vulnerability warning (sonarqube/sonarlint) - FOLIO Issue Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: P3
Resolution: Done
Affects Version/s: 22.1.0
Fix Version/s: 23.0.0
Labels:
- back-end
- sprint49

Template:
Development Team:
Core: Platform
Back End Estimate:
Very Small (VS) < 1day

Description

passwordRedacted.put(_PASSWORD, "..."); in PostgresClient::logPostgresConfig triggers this vulnerability warning:
Credentials should not be hard-coded
'password' detected in this expression, review this potentially hard-coded credential.

TestRail: Results

Attachments

Activity

People

Assignee:: Julian Ladisch

Reporter:: Julian Ladisch

Tester Assignee:: Adam Dickmeiss

Back End Estimator:: Julian Ladisch

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 16/Oct/18 4:05 PM

Updated:: 15/Dec/20 4:52 PM

Resolved:: 16/Oct/18 4:26 PM

Fix false positive password vulnerability warning (sonarqube/sonarlint)