sonar-go Improve rule S2068 to detect password in db connections

Improve rule S2068 to detect password in db connections

Open saberduck opened this issue 5 years ago • 0 comments

Rule S2068 should detect when credentials are hardcoded in the db connection string

package main

import (
    "database/sql"
)

// connect Database with hardcoded values
func connectDatabase() (*sql.DB, error) {
    var err error

    db, err := sql.Open("postgres", "user=notactualusername password=notactual dbname=aggregatordb sslmode=disable host=aggregatordb-primary") // Noncompliant

    if err != nil {
        panic("Database connection failure")
    }

    return db, nil
}

May 31 '19 08:05 saberduck

sonar-go sonar-go copied to clipboard

Improve rule S2068 to detect password in db connections

sonar-go
sonar-go copied to clipboard