Use of Hard-coded Credentials
| Property | |
|---|---|
| Language | regex |
| Severity |  |
| CWE | CWE-798: Use of Hard-coded Credentials |
| OWASP | A07:2021 - Identification and Authentication Failures |
| Confidence Level | Low |
| Impact Level | Medium |
| Likelihood Level | Low |
Description#
Hard-coded Vault batch tokens have been found in the codebase. Storing sensitive credentials like tokens directly in source code exposes them to anyone with code access, increasing the risk of leaks.
Impact#
If these tokens are exposed, attackers could gain unauthorized access to Vault secrets or services, potentially leading to data breaches, privilege escalation, or further compromise of internal systems. This can put sensitive information and overall application security at risk.