It seems like that hardcoded secrets like passwords in the following format are not being detected by SonarQube’s secret detection rules. Anyone knows the reason?
apiVersion: apps/v1
kind: Deployment
metadata:
name: app
spec:
replicas: 3
selector:
matchLabels:
test.kubernetes.io/name: app
template:
metadata:
labels:
test.kubernetes.io/name: app
spec:
containers:
- name: temporal-history
image: “test.sonarqube.io/app”
imagePullPolicy: IfNotPresent
env:
- name: MYSQL_PASSWORD
value: sdtestfdfde123!@test
Thank you in advance.