Stack Overflow
Stack Overflow

Questions tagged [security-code-scan]

Static code analyzer for .NET.

https://security-code-scan.github.io/

6 questions
3
votes
0 answers

How to resolve Security code scan SCS0016 in API controller

We have implemented weather API controller to update weather data and inherited ControllerBase in API controller with APIController action filter like below and enabled security code scan. using Microsoft.AspNetCore.Mvc; namespace…
Amrutha
  • 31
  • 3
3
votes
2 answers

How do I fix SCS0018?

Security Scan SCS0018 Warnings in Visual Studio are shown during the build. Currently, I am working on these warnings to get removed. I tried several MSDN sites but no luck. I have also read OWSAP but they are not clearly related to C#. Please find…
Binod
  • 313
  • 1
  • 2
  • 12
3
votes
1 answer

How do I fix SCS0028?

Security Scan Warnings in Visual Studio are shown during the build. Currently, I am working on these warnings to get removed. I tried several MSDN sites but no luck. I have also read OWSAP but they are not clearly related to C#. Code: public static…
Binod
  • 313
  • 1
  • 2
  • 12
2
votes
2 answers

How do I run Security Code Scan in a GitLab pipeline?

I am trying to integrate the Security Code Scan with Gitlab CI. I read the documentation but still, I can't understand how exactly must write commands for SCS in yml file (source file: warning SCS[rule id]: [warning description] [project_file]). My…
user13821287
0
votes
0 answers

Is there a secure method to search for Hashicorp Vault secrets leaked in Git commits?

There is a HashiCorp Vault for secrets keeping. And there is a GitLab for code. We want to find some way to explicitly (and securely) know: is there an explicit leak of a secret stored in our Vault in some of repo's commits We tried to use Secret…
kodzi
  • 1
  • 1
0
votes
1 answer

ERROR: Validation of project failed o To use the property "sonar.branch.name" and analyze branches

Solution for this thread The command provided by the SonarCommunity/Forum did not solve the issue, see snippet below, but by learning the dotnet framework method we manage, so basically we remove to problematic Property from the env:Variable, see…
alexis19apl
  • 41
  • 1
  • 10