Use of Hard-coded Credentials
| Property | |
|---|---|
| Language | regex |
| Severity |  |
| CWE | CWE-798: Use of Hard-coded Credentials |
| OWASP | A07:2021 - Identification and Authentication Failures |
| Confidence Level | Low |
| Impact Level | Medium |
| Likelihood Level | Low |
Description#
The code contains a hard-coded Beamer API token, which exposes sensitive credentials directly in the source. Storing secrets in code makes them accessible to anyone with code access, increasing the risk of leaks.
Impact#
If the token is discovered, an attacker could use it to access or control resources tied to your Beamer account, potentially leading to data breaches, unauthorized changes, or abuse of services. This can compromise the security and reputation of your application or organization.