[OPENJDK-1978] tag some source lines with "notsecret" to suppress false-positive security scans

https://issues.redhat.com/browse/OPENJDK-1978

Some of the container sources look a bit like embedded passwords to security scanners. In particular these three lines

 * https://github.com/jmtd/redhat-openjdk-container-images/blob/a2a35ee4d760c059376878bd30acc27650404699/modules/maven/default/tests/bats/expectations/server_with_username.xml?plain=1#L5
 * https://github.com/jmtd/redhat-openjdk-container-images/blob/a2a35ee4d760c059376878bd30acc27650404699/modules/maven/default/tests/bats/expectations/server_with_all.xml?plain=1#L5
 * https://github.com/jmtd/redhat-openjdk-container-images/blob/a2a35ee4d760c059376878bd30acc27650404699/modules/maven/default/artifacts/opt/jboss/container/maven/default/maven.sh?plain=1#L375

Adjust those source lines to include the string "nosecret" on those particular lines. This should be a comment in the relevant language, e.g. `# nosecret` in shell, or `` in XML.

We'd need this in the ubi8 and ubi9 branches.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[OPENJDK-1978] tag some source lines with "notsecret" to suppress false-positive security scans #368

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[OPENJDK-1978] tag some source lines with "notsecret" to suppress false-positive security scans #368

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions