Poor file permissions used when creating a file or using os.Chmod

Question

Poor file permissions used when creating a file or using os.Chmod

philipjonsen opened this issue a year ago · 0 comments

DESCRIPTION
Excessive permissions granted to a file/directory. This warning is triggered whenever permission greater than 0600 is granted.

Generally, all security rules follow the principle of least privilege, except when the file being created needs to be accessed by anyone other than the user creating it.

REFERENCES
OWASP A5:2021
File System Permission-Numeric Notation
CWE-276

Expect file permissions to be 0600 or less here:

hive/blob/master/internal/libdocker/container.go#L382-L382
hive/blob/master/cmd/hivechain/main.go#L128-L128
hive/blob/master/cmd/hivechain/generate.go#L253-L253