False Posivitives related to Code Analysis #220
Labels
enhancement
MobSF enhancements and feature requests
Comments
|
The false positive is due to this line Will track the show line stuff as an enhancement |
94 tasks
|
How do you suppress the false positive then ? I don't want the security score being reduced by those false positives. I want to remove those false positives from the generated PDF report. How do I achieve that ? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi, I was just wondering if it is possible that the tool is giving me a false positive here.
Finding: "Files may contain hardcoded sensitive informations like usernames, passwords, keys etc." in the file MenuBuilder.java
However, when I checked the code and I cannot find anything hardcoded that is sensitive. The only line that I can think about it is "paramBundle.putInt("android:menu:expandedactionview", localMenuItem.getItemId());" but still I dont think it is.
I have attached the MenuBuilder in case I am wrong. MenuBuilder.java.txt
Also I was wondering if it is possible that for next version, we could see which line of the code the tool is doing reference. So we know exactly where the issue is.
Thank you.
The text was updated successfully, but these errors were encountered: