I am attempting to find a list of keywords or patterns for the default rules used in SonarQube.
As an example, let’s take the Java rule : Databases should be password-protected
found here: https://rules.sonarsource.com/java/
How does SonarQube determine which variables are passwords or other sensitive information? I’ve looked through the Github documentation & files, but I have yet to find a list of values that influence rule violations.