Copying recursively might inadvertently add sensitive data to the container. Make sure it is safe here — This is a false issue and copy recursively is a coding standard without coping recursively application build fails
this issue shown sonarcloud.
how to fix it
Hey there.
Can you provide some sample code that reproduces an issue and demonstrates what you’re talking about?
Also, keep in mind the definition of a security hotspot:
The main difference between a hotspot and a vulnerability is the need for a review before deciding whether to apply a fix:
- With a hotspot, a security-sensitive piece of code is highlighted, but overall application security may not be impacted; It’s up to the developer to review the code to determine whether or not a fix is needed to secure the code.
- With a vulnerability, a problem that impacts the application’s security has been discovered that needs to be fixed immediately.
What’s being raised isn’t necessarily an issue to be fixed, but an area of code you should review and decide if it’s safe or not (and mark it as such in SonarCloud).