#kotlin

Rulesets (1)

kotlin

Semgrep

security

Default ruleset for Kotlin, curated by Semgrep.

Rules (65)

kotlin.jedis.jedis-hardcoded-password.jedis-hardcoded-password

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.jjwt.jjwt-hardcode.jjwt-hardcode

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.session.hardcoded-signing-key.hardcoded-signing-key

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.lang.security.crypto.hardcoded-secret-key-spec.hardcoded-secret-key-spec

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.lang.security.net.secrets.hardcoded-secret-in-request-header-decoded.hardcoded-secret-in-request-header-decoded

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.lang.security.net.secrets.hardcoded-secret-in-request-header-encoded.hardcoded-secret-in-request-header-encoded

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.lang.security.net.secrets.hardcoded-secret-in-request-header.hardcoded-secret-in-request-header

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.lang.security.properties.properties-hardcoded-secret.properties-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.mongo.mongo-hardcoded-secret.mongo-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.okhttp.secrets.empty-credentials.empty.Credentials

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.okhttp.secrets.hardcoded-credentials.okhttp3.Credentials

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.okhttp.secrets.hardcoded-secret-in-request-header-decoded.hardcoded-secret-in-request-header-decoded

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.okhttp.secrets.hardcoded-secret-in-request-header-encoded.hardcoded-secret-in-request-header-encoded

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.okhttp.secrets.hardcoded-secret-in-request-header.hardcoded-secret-in-request-header

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.openai.openai-hardcoded-secret.openai-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.sqli.ktor-exposed-unsafe-exec-sqli.ktor-exposed-unsafe-exec-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.apache-hardcoded-empty-secret.apache-hardcoded-empty-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.apache-hardcoded-secret.apache-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.drivermanager-hardcoded-empty-secret.drivermanager-hardcoded-empty-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.drivermanager-hardcoded-secret.drivermanager-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.jetbrains-hardcoded-empty-secret.jetbrains-hardcoded-empty-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.sql.jetbrains-hardcoded-secret.jetbrains-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

No author info

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

No author info

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

No author info

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

generic.unicode.security.bidi.contains-bidirectional-characters

returntocorp

This code contains bidirectional (bidi) characters. While this is useful for support of right-to-left languages such as Arabic or Hebrew, it can also be used to trick language parsers into executing code in a manner that is different from how it is displayed in code editing and review tools. If this is not what you were expecting, please review this code in an editor that can reveal hidden Unicode characters.

kotlin.generic.secrets.setpassword-hardcoded.setpassword-hardcoded

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.jedis.jedis-auth-hardcoded-secret.jedis-auth-hardcoded-secret

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.jedis.jedis-hardcoded-pool.jedis-hardcoded-pool

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.java-jwt.jwt-hardcode.jwt-hardcode

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.java-jwt.jwt-none-alg.jwt-none-alg

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxbuilder-xxe.saxbuilder-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.jjwt.jjwt-none-alg.jjwt-none-alg

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.active-debug-code.ktor-development-mode-gradle.ktor-development-mode-gradle

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.nosqli.ktor-kmongo-nosqli.ktor-kmongo-nosqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.nosqli.ktor-mongo-java-driver.ktor-mongo-java-driver

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.sqli.ktor-prepare-statetment-sqli.ktor-prepare-statement-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.ktor.xss.ktor-request-xss.ktor-request-xss

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.cookie-serializer-secure-false.cookie-serializer-secure-false

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.exposed-exec-sqli.exposed-exec-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.hibernate-sqli.hibernate-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.jdbctemplate-sqli.jdbctemplate-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.kmongo-nosqli.kmongo-nosqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.mongo-driver-nosqli.mongo-driver-nosqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.prepare-statetment-sqli.prepare-statement-sqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.scripting-host-eval.scripting-host-eval

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.spring-data-mongo-nosqli.spring-data-mongo-nosqli

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.tainted-ssrf-spring-add.tainted-ssrf-spring-add

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.tainted-ssrf-spring-format.tainted-ssrf-spring-format

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.spring.tainted-system-command.tainted-system-command

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.documentbuilderfactory-xxe-parameter-entity.documentbuilderfactory-xxe-parameter-entity

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.documentbuilderfactory-xxe.documentbuilderfactory-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxbuilder-xxe-parameter-entities.saxbuilder-xxe-parameter-entities

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxparserfactory-xxe-parameter-entity.saxparserfactory-xxe-parameter-entity

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxparserfactory-xxe.saxparserfactory-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxreader-xxe-parameter-entities.saxreader-xxe-parameter-entities

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxreader-xxe.saxreader-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxtransformerfactory-xxe-stylesheet.saxtransformerfactory-xxe-stylesheet

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.saxtransformerfactory-xxe.saxtransformerfactory-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.schemafactory-xxe-schema.schemafactory-xxe-schema

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.schemafactory-xxe.schemafactory-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.validator-xxe.validator-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.xmlreader-xxe-parameter-entities.xmlreader-xxe-parameter-entities

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

kotlin.xxe.xmlreader-xxe.xmlreader-xxe

returntocorp

kotlin

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.

java.lang.security.system.system-setproperty-hardcoded-secret.system-setproperty-hardcoded-secret

returntocorp

Insufficient permissions to view rule definition. This rule is only visible to logged in users. Log in to see this rule.