New Published Rules - java.lang.security.audit.active-debug-code-getstacktrace.active-debug-code-getstacktrace

[semgrep-dev-pr-bot]

Wahoo! New published rules with java.lang.security.audit.active-debug-code-getstacktrace.active-debug-code-getstacktrace from @jobayer1091.

See semgrep.dev/s/30Lp for more details.

Thanks for your contribution! ❤️

[semgrep-zcs-prod-semgrep]

Semgrep found 6 active-debug-code-getstacktrace findings:

• java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java
  • L10 - Triage
  • L19 - Triage
  • L28 - Triage
  • L33 - Triage
  • L35 - Triage
  • L41 - Triage

Possible active debug code detected. Deploying an application with debug code can create unintended entry points or expose sensitive information.

View Dataflow Graph

flowchart LR
    classDef invis fill:white, stroke: none
    classDef default fill:#e7f5ff, color:#1c7fd6, stroke: none

    subgraph File0["<b>java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java</b>"]
        direction LR
        %% Source

        subgraph Source
            direction LR

            v0["<a href=https://github.com/semgrep/semgrep-rules/blob/8387c62c4830aaf2ee18bd9f1deeff300c9f4baf/java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java#L39 target=_blank style='text-decoration:none; color:#1c7fd6'>[Line: 39] Thread.currentThread().getStackTrace()</a>"]
        end
        %% Intermediate

        subgraph Traces0[Traces]
            direction TB

            v2["<a href=https://github.com/semgrep/semgrep-rules/blob/8387c62c4830aaf2ee18bd9f1deeff300c9f4baf/java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java#L39 target=_blank style='text-decoration:none; color:#1c7fd6'>[Line: 39] ste</a>"]

            v3["<a href=https://github.com/semgrep/semgrep-rules/blob/8387c62c4830aaf2ee18bd9f1deeff300c9f4baf/java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java#L39 target=_blank style='text-decoration:none; color:#1c7fd6'>[Line: 39] ste</a>"]
        end
            v2 --> v3
        %% Sink

        subgraph Sink
            direction LR

            v1["<a href=https://github.com/semgrep/semgrep-rules/blob/8387c62c4830aaf2ee18bd9f1deeff300c9f4baf/java/lang/security/audit/active-debug-code-getstacktrace/active-debug-code-getstacktrace.java#L41 target=_blank style='text-decoration:none; color:#1c7fd6'>[Line: 41] System.out.println(ste)</a>"]
        end
    end
    %% Class Assignment
    Source:::invis
    Sink:::invis

    Traces0:::invis
    File0:::invis

    %% Connections

    Source --> Traces0
    Traces0 --> Sink

Loading

[jobayer1091]

Y