Inspects workflow configuration to detect insecure password practices.
It performs two types of checks:
1. Credential Nodes Configuration:
Verifies whether the option “Save password in configuration (weakly encrypted)” is enabled in nodes like Credentials Widget and Credentials Configuration. If so, the check fails.
2. Embedded Password Values:
Detects passwords saved directly in configuration fields of nodes that support sensitive credentials (e.g., DB nodes, REST nodes, credential nodes). The presence of stored password values triggers a failed check.
The analysis is based on the Workflow Summary column, typically generated by the Workflow Summary Extractor node.
It performs two types of checks:
1. Credential Nodes Configuration:
Verifies whether the option “Save password in configuration (weakly encrypted)” is enabled in nodes like Credentials Widget and Credentials Configuration. If so, the check fails.
2. Embedded Password Values:
Detects passwords saved directly in configuration fields of nodes that support sensitive credentials (e.g., DB nodes, REST nodes, credential nodes). The presence of stored password values triggers a failed check.
The analysis is based on the Workflow Summary column, typically generated by the Workflow Summary Extractor node.