Security
- Hardcoded passwords
Detects potential security tokens or passwords in comments using entropy analysis and regular expressions.
- Link with unencrypted protocol
Reports the links that use unencrypted protocols (such as HTTP), which can expose your data to man-in-the-middle attacks.
- Malicious dependency
Reports malicious NPM and PyPI dependencies declared in your project.
- Vulnerable API usage
Reports usages of Vulnerable APIs of imported dependencies.
- Vulnerable declared dependency
Reports vulnerabilities in Gradle, Maven, NPM and PyPI dependencies declared in your project.
- Vulnerable imported dependency
Reports vulnerabilities in Gradle and Maven dependencies imported into your project.
Last modified: 03 December 2024