Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Veracode issue - Demiurge code/scripts/config.js line 7 #1155

Open
skutner opened this issue Jan 10, 2023 · 0 comments
Open

Veracode issue - Demiurge code/scripts/config.js line 7 #1155

skutner opened this issue Jan 10, 2023 · 0 comments
Projects
Development Board

Comments

@skutner
Copy link
Contributor

skutner commented Jan 10, 2023
edited

Description: The application contains hard-coded information that may contain credentials to an external service. The use of hard-coded credentials significantly increases the possibility that the account being protected will be compromised. set

Remediation: Store credentials out-of-band from the application code. Follow best practices for protecting credentials stored in locations such as configuration or properties files.
@skutner skutner created this issue from a note in Development Board (Current backlog (MVP1)) Jan 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
Development Board
Current backlog (MVP1)
Milestone
No milestone
Development

No branches or pull requests
1 participant
@skutner