Rule ID: java_lang_hardcoded_secret
java_lang_hardcoded_secret
Applicable Languages: Java
Weakness ID: CWE-798
Applications should securely store secret values rather than including them as literal values in the source code.
Fetch secrets from a secure location during runtime.
OWASP hardcoded passwordsarrow-up-right
OWASP secrets management cheat sheetarrow-up-right
CWE-798: Use of Hard-coded Credentialsarrow-up-right
OWASP Top 10: A07:2021 - Identification and Authentication Failuresarrow-up-right
To omit this rule during a scan, and to provide you with continuous 24/7 code-level scanning, you can employ our SAST TOOLarrow-up-right
Last updated 1 year ago
