10.2 | Analyzing source code | Languages | Secrets

On this page


Secrets are pieces of user-specific or system-level credentials that should be protected and accessible to legitimate users only. SonarQube detects exposed Secrets in your source code and language-agnostic config files.

Secrets analysis is available starting in Community Edition.

Language-specific properties

Discover and update the Secrets-specific properties in: Administration > Configuration > General Settings > Languages > Secrets. 

© 2008-2023, SonarSource S.A, Switzerland. Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution-NonCommercial 3.0 United States License. SONARQUBE is a trademark of SonarSource SA. All other trademarks and copyrights are the property of their respective owners.

Creative Commons License