10.2 | Analyzing source code | Languages | Secrets

Secrets

Secrets are pieces of user-specific or system-level credentials that should be protected and accessible to legitimate users only. SonarQube detects exposed Secrets in your source code and language-agnostic config files.

Secrets analysis is available starting in Community Edition.

Language-specific properties

Discover and update the Secrets-specific properties in: Administration > Configuration > General Settings > Languages > Secrets.

Adding coding rules
Secrets rules for static code analysis

© 2008-2023, SonarSource S.A, Switzerland. Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution-NonCommercial 3.0 United States License. SONARQUBE is a trademark of SonarSource SA. All other trademarks and copyrights are the property of their respective owners.

On this page

Secrets

.css-4ebt6d{position:relative;--tw-text-opacity:1;color:rgb(0 0 0 / var(--tw-text-opacity));}Language-specific properties.css-abpesc{width:2rem;display:none;margin-left:0.5rem;fill:#5F656D;}.css-abpesc:hover{fill:#290042;}

Related pages

Language-specific properties