Scan Results

List of Findings

Error: SIGMA.hardcoded_secret (CWE-798): [#def1]
/pcs/pcs/daemon/app/api_v1.py:85: Sigma main event: A secret, such as a password, cryptographic key, or token is stored in plaintext directly in the source code, in an application's properties, or configuration file. Users with access to the secret may then use the secret to access resources that they otherwise would not have access to. Secret type: Secret (generic).
/pcs/pcs/daemon/app/api_v1.py:85: remediation: Avoid setting sensitive configuration values as string literals. Instead, these values should be set using variables with the sensitive data loaded from an encrypted file or a secret store.

Error: SIGMA.hardcoded_secret (CWE-798): [#def2]
/pcs/pcs_test/tier0/cli/test_nvset.py:282: Sigma main event: A secret, such as a password, cryptographic key, or token is stored in plaintext directly in the source code, in an application's properties, or configuration file. Users with access to the secret may then use the secret to access resources that they otherwise would not have access to. Secret type: Secret (generic).
/pcs/pcs_test/tier0/cli/test_nvset.py:282: remediation: Avoid setting sensitive configuration values as string literals. Instead, these values should be set using variables with the sensitive data loaded from an encrypted file or a secret store.

Error: SIGMA.hardcoded_secret (CWE-798): [#def3]
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: Sigma main event: A secret, such as a password, cryptographic key, or token is stored in plaintext directly in the source code, in an application's properties, or configuration file. Users with access to the secret may then use the secret to access resources that they otherwise would not have access to. Secret type: Secret (generic).
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: remediation: Avoid setting sensitive configuration values as string literals. Instead, these values should be set using variables with the sensitive data loaded from an encrypted file or a secret store.

Error: SIGMA.hardcoded_secret (CWE-798): [#def4]
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: Sigma main event: A secret, such as a password, cryptographic key, or token is stored in plaintext directly in the source code, in an application's properties, or configuration file. Users with access to the secret may then use the secret to access resources that they otherwise would not have access to. Secret type: Secret (generic).
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: remediation: Avoid setting sensitive configuration values as string literals. Instead, these values should be set using variables with the sensitive data loaded from an encrypted file or a secret store.

Error: SIGMA.hardcoded_secret (CWE-798): [#def5]
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: Sigma main event: A secret, such as a password, cryptographic key, or token is stored in plaintext directly in the source code, in an application's properties, or configuration file. Users with access to the secret may then use the secret to access resources that they otherwise would not have access to. Secret type: Secret (generic).
/pcs/pcs_test/tier0/common/reports/test_messages.py:6785: remediation: Avoid setting sensitive configuration values as string literals. Instead, these values should be set using variables with the sensitive data loaded from an encrypted file or a secret store.