CodeAnt AI home pagelight logodark logo
  • Support
  • Dashboard
  • Dashboard
Documentation
API Reference
Start Here
  • What is CodeAnt?
  • Join Community
Setup
  • Github
  • Bitbucket
  • Gitlab
  • Azure Devops
Pull Request Review
  • Features
  • Customize Review
  • Quality Gates
  • Integrations
Scan center
  • Code Security
  • Code Quality
  • Cloud Security
  • Engineering Productivity
Integrations
  • Jira
  • Test Coverage
  • CI/CD
IDE
  • Setup
  • Review
  • Enhancements
Rule Reference
  • Compliance
  • Anti-Patterns
  • Code Governance
  • Infrastructure Security Database
  • Application Security Database
    • Apex
    • Bash
    • C
    • Clojure
    • Cpp
    • Csharp
    • Dockerfile
    • Elixir
    • Fingerprints
    • Generic
    • Go
    • Html
    • Java
    • Javascript
      • Ajv
      • Angular
      • Apollo
      • Argon2
      • Audit
      • Aws-lambda
      • Axios
      • Bluebird
      • Browser
      • Chrome-remote-interface
      • Crypto
      • Deno
      • Express
      • Fbjs
      • Firebase
      • Grpc
      • Intercom
      • Jose
      • Jquery
      • Jsonwebtoken
      • Jssha
      • Jwt-simple
      • Knex
      • Lang
      • Monaco-editor
      • Mongodb
      • Mongoose
      • Mssql
        • Node-mssql-empty-password
        • Node-mssql-hardcoded-secret-connection-string
        • Node-mssql-hardcoded-secret
          • Node mssql hardcoded secret
      • Mysql
      • Node-expat
      • Passport-jwt
      • Pg
      • Phantom
      • Playwright
      • Puppeteer
      • React
      • Sandbox
      • Sax
      • Sequelize
      • Serialize-javascript
      • Shelljs
      • Superagent
      • Thenify
      • Vm2
      • Vue
      • Wkhtmltoimage
      • Wkhtmltopdf
      • Xml2json
    • Json
    • Kotlin
    • Ocaml
    • Php
    • Problem-based-packs
    • Python
    • Ruby
    • Rust
    • Scala
    • Solidity
    • Swift
    • Terraform
    • Typescript
    • Yaml
Resources
  • Open Source
  • Blogs
Node-mssql-hardcoded-secret

Node mssql hardcoded secret

node-mssql-hardcoded-secret

A secret is hard-coded in the application. Secrets stored in source code, such as credentials, identifiers, and other types of sensitive data, can be leaked and used by internal or external malicious actors. Use environment variables to securely provide credentials and other secrets or retrieve them from a secure vault or Hardware Security Module (HSM).
Likelihood: HIGH
Confidence: HIGH
CWE:
- CWE-798: Use of Hard-coded Credentials
OWASP:
- A07:2021 - Identification and Authentication Failures
Node mssql hardcoded secret connection stringNode mysql hardcoded secret
twitterlinkedin
Powered by Mintlify
Assistant
Responses are generated using AI and may contain mistakes.