006_0001 - ExposedConstants

Exposed constants with sensitive data

Set constant's 'Exposed to client' setting to false.

Metadata

authors:
- Bart Zantingh <bart.zantingh@nl.abnamro.com>
category: Security
input: '**/*$Constant.yaml'
rulename: ExposedConstants
rulenumber: '006_0001'
scope: package
severity: HIGH

Description

Constants with potentially sensitive data should not be exposed to the client.

Remediation

Set constant's 'Exposed to client' setting to false.

Test cases

# No test file found