Must-share information (formatted with Markdown):
- SonarLint for VSCode 1.21.0
- checking JS source for security issues
- I have the following code with hardcoded password. SonarLint does not report this!
var mysql = require(‘mysql’);
var connection = mysql.createConnection(
password: “mypassword”, // sensitive