Skip to main content

Exclude unverifiable files

Summary​

Binary and other types of files, which are often not audited for security purposes, should not be stored in the source code repository.

Description​

Binary files usually have a file size greater than their source counterpart, which can eventually affect a repository performance. Changes done to them are often hard to track for versioning tools or make no sense for a reviewer. Furthermore, security audits on binary files are more complicated or simply not performed, and these could contain serious vulnerabilities such as backdoors, rootkits and exposed sensitive information.

Supported In​

This requirement is verified in following services

PlanSupported
Machine🟢
Squad🟢

References​

Vulnerabilities​

free trial

Search for vulnerabilities in your apps for free with our automated security testing! Start your 21-day free trial and discover the benefits of our Continuous Hacking Machine Plan. If you prefer a full service that includes the expertise of our ethical hackers, don't hesitate to contact us for our Continuous Hacking Squad Plan.