rspec/rules/S7024/secrets/rule.adoc


include::../../../shared_content/secrets/description.adoc[]

== Why is this an issue?

include::../../../shared_content/secrets/rationale.adoc[]

=== What is the potential impact?

Below are some real-world scenarios that illustrate some impacts of an attacker
exploiting the secret.

:service_name: IBM Cloud Object Storage
:secret_type: access key

include::../../../shared_content/secrets/impact/malware_distribution.adoc[]

include::../../../shared_content/secrets/impact/data_compromise.adoc[]

include::../../../shared_content/secrets/impact/data_modification.adoc[]

== How to fix it

include::../../../shared_content/secrets/fix/revoke.adoc[]

include::../../../shared_content/secrets/fix/vault.adoc[]

=== Code examples

:example_secret: 891c8ed850cddbece40760b800867f1231d43f2d2586
:example_name: ibm-cloud.cos_hmac.secret-access-key
:example_env: COS_HMAC_SECRET_ACCESS_KEY

include::../../../shared_content/secrets/examples.adoc[]

//=== How does this work?

//=== Pitfalls

//=== Going the extra mile

== Resources

include::../../../shared_content/secrets/resources/standards.adoc[]

//=== Benchmarks
Create rule S7024: IBM Cloud Object Storage access keys should not be disclosed (#4074) * Create rule S7024 * Add content for IBM Cloud Object Storage --------- Co-authored-by: jamie-anderson-sonarsource <jamie-anderson-sonarsource@users.noreply.github.com> Co-authored-by: Jamie Anderson <127742609+jamie-anderson-sonarsource@users.noreply.github.com> 2024-07-19 18:15:01 +01:00
			`include::../../../shared_content/secrets/description.adoc[]`

			`== Why is this an issue?`

			`include::../../../shared_content/secrets/rationale.adoc[]`

			`=== What is the potential impact?`

			`Below are some real-world scenarios that illustrate some impacts of an attacker`
			`exploiting the secret.`

			`:service_name: IBM Cloud Object Storage`
			`:secret_type: access key`

			`include::../../../shared_content/secrets/impact/malware_distribution.adoc[]`

			`include::../../../shared_content/secrets/impact/data_compromise.adoc[]`

			`include::../../../shared_content/secrets/impact/data_modification.adoc[]`

			`== How to fix it`

			`include::../../../shared_content/secrets/fix/revoke.adoc[]`

			`include::../../../shared_content/secrets/fix/vault.adoc[]`

			`=== Code examples`

			`:example_secret: 891c8ed850cddbece40760b800867f1231d43f2d2586`
			`:example_name: ibm-cloud.cos_hmac.secret-access-key`
			`:example_env: COS_HMAC_SECRET_ACCESS_KEY`

			`include::../../../shared_content/secrets/examples.adoc[]`

			`//=== How does this work?`

			`//=== Pitfalls`

			`//=== Going the extra mile`

			`== Resources`

			`include::../../../shared_content/secrets/resources/standards.adoc[]`

			`//=== Benchmarks`