Poor file permissions used when creating a file or using os.Chmod

DESCRIPTION
Excessive permissions granted to a file/directory. This warning is triggered whenever permission greater than 0600 is granted.

Generally, all security rules follow [the principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege), except when the file being created needs to be accessed by anyone other than the user creating it.

REFERENCES
[OWASP A5:2021](https://owasp.org/Top10/A05_2021-Security_Misconfiguration/)
[File System Permission-Numeric Notation](https://en.wikipedia.org/wiki/File-system_permissions#Numeric_notation)
[CWE-276](https://cwe.mitre.org/data/definitions/276.html)


Expect file permissions to be 0600 or less here:

hive/blob/master/internal/libdocker/container.go#L382-L382
hive/blob/master/cmd/hivechain/main.go#L128-L128
hive/blob/master/cmd/hivechain/generate.go#L253-L253

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Poor file permissions used when creating a file or using os.Chmod #879

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Poor file permissions used when creating a file or using os.Chmod #879

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions