rspec/rules/S2068/javascript/rule.adoc

include::../description.adoc[]

include::../ask-yourself.adoc[]

include::../recommended.adoc[]

== Sensitive Code Example

----
var mysql = require('mysql');

var connection = mysql.createConnection(
{
  host:'localhost',
  user: "admin",
  database: "project",
  password: "mypassword", // sensitive 
  multipleStatements: true
});

connection.connect(); 
----

== Compliant Solution

----
var mysql = require('mysql');

var connection = mysql.createConnection({
  host: process.env.MYSQL_URL,
  user: process.env.MYSQL_USERNAME,
  password: process.env.MYSQL_PASSWORD,
  database: process.env.MYSQL_DATABASE
});
connection.connect();
----

include::../see.adoc[]
Add rules 2000-2999 2020-06-30 12:48:07 +02:00			`include::../description.adoc[]`

			`include::../ask-yourself.adoc[]`

			`include::../recommended.adoc[]`

			`== Sensitive Code Example`

			`----`
			`var mysql = require('mysql');`

			`var connection = mysql.createConnection(`
			`{`
			`host:'localhost',`
			`user: "admin",`
			`database: "project",`
			`password: "mypassword", // sensitive`
			`multipleStatements: true`
			`});`

			`connection.connect();`
			`----`

			`== Compliant Solution`

			`----`
			`var mysql = require('mysql');`

			`var connection = mysql.createConnection({`
			`host: process.env.MYSQL_URL,`
			`user: process.env.MYSQL_USERNAME,`
			`password: process.env.MYSQL_PASSWORD,`
			`database: process.env.MYSQL_DATABASE`
			`});`
			`connection.connect();`
			`----`

			`include::../see.adoc[]`