swift
Insecure service configuration - App Backup - Swift
Need Secure configuration of application backups Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit @UIApplicationMain class ...
Uncontrolled external site redirect - Swift
Need Controlled and secure external site redirects Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of SafariServices for integrating Safari browser functionality into an ...
Insecure encryption algorithm - SSLContext - Swift
Need Implementation of secure encryption algorithms for SSLContext Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Usage of Alamofire for making network requests in ...
Inappropriate coding practices - Cyclomatic complexity - Swift
Need Improvement of coding practices to reduce cyclomatic complexity Context Usage of Swift 5.0 for iOS app development Description Non compliant code func complexFunction(a: Int, b: Int, c: Int, d: Int, e: Int, f: Int, g: Int, h: Int, i: Int, j: ...
Sensitive information in source code - API Key - Swift
Need Secure storage and retrieval of sensitive information, such as API keys, in the source code. Context Usage of Swift programming language for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces ...
Insecure exceptions - Empty or no catch - Swift
Need Proper exception handling and error management Context Usage of Swift 5.0 for iOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code func vulnerableFunction() { do { // Some ...
Inappropriate coding practices - Swift
Need Enforcement of proper encapsulation in coding practices Context Usage of Swift 5.0 for iOS app development Description Non compliant code public class User { public var id: Int public var name: String public var email: String init(id: Int, name: ...
Lack of isolation methods - Swift
Need Implementation of isolation methods for running applications Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ...
Race condition - Swift
Need Prevention of race conditions in the system Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation class SharedResource ...
Metadata with sensitive information - Swift
Need Protection of sensitive information in metadata files Context Usage of Swift programming language for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit ...
Unverifiable files - Swift
Need Ensuring verifiability of files stored in the repository Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and mobile-first websites Description Non compliant code import Foundation func ...
Security controls bypass or absence - Swift
Need Implementation of robust security controls Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of LocalAuthentication for implementing local device authentication ...
Improper type assignation - Swift
Need Enforce proper type assignment and declaration in the source code Context Usage of Swift for iOS and macOS app development Description Non compliant code var someVariable = 42 someVariable = "Hello, World!" In the above Swift code, we have a ...
Insecure deserialization - Swift
Need Secure deserialization process Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation // The following code represents ...
Insecure encryption algorithm - Cipher Block Chaining - Swift
Need Secure encryption algorithm for data protection Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Usage of CommonCrypto for cryptographic operations Description Non ...
Insecure encryption algorithm - Anonymous cipher suites - Swift
Need Secure encryption algorithm and cipher suite selection Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Usage of Network for managing network connections and ...
Log injection - Swift
Need Prevention of log injection attacks Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of os.log for logging system events and messages Description Non compliant code ...
Insecure session management - Swift
Need Secure session management Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ViewController: UIViewController { var ...
Weak CAPTCHA - Swift
Need Implementation of a strong and reliable CAPTCHA system Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of Alamofire for handling network requests in iOS development ...
Insecure session expiration time - Swift
Need Enforce secure session expiration time Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class SessionManager { static let ...
Improper resource allocation - Swift
Need Efficient resource allocation and management Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ViewController: ...
Technical information leak - Console functions - Swift
Need Secure logging and information handling Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ViewController: UIViewController ...
Insecure service configuration - Host verification - Swift
Need Secure service configuration - Host verification Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Usage of Alamofire for making HTTP requests in Swift Description ...
Insecure encryption algorithm - Swift
Need Implementation of secure encryption algorithms Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of CryptoSwift for cryptographic operations in Swift development ...
Business information leak - Swift
Need Protection of sensitive business information from unauthorized access or leakage Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import ...
Insecure generation of random numbers - Swift
Need Secure generation of random numbers Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation func generateRandomNumber() ...
Insecure temporary files - Swift
Need Secure handling of temporary files Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation func ...
User enumeration - Swift
Need Prevention of user enumeration Context Usage of Swift for iOS and macOS app development Usage of UIKit for building user interfaces with a modern design and enhanced functionality Usage of FirebaseAuth for user authentication and authorization ...
Use of an insecure channel - Swift
Need Secure transmission of sensitive information Context Usage of Swift for iOS and macOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation let url = ...
Non-encrypted confidential information - Swift
Need Secure storage of confidential information Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ViewController: ...
Administrative credentials stored in cache memory - Swift
Need Secure storage of administrative credentials Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class LoginViewController: ...
Sensitive information sent insecurely - Swift
Need Secure transmission of sensitive information Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of Alamofire for making network requests in iOS development Description ...
Insecure encryption algorithm - SSL/TLS - Swift
Need Implementation of secure encryption algorithms for SSL/TLS Context Usage of Swift 5.0 for iOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation let url = ...
Insecure authentication method - Basic - Swift
Need Secure authentication method Context Usage of Swift 5.0 for iOS app development Usage of Foundation for building responsive and accessible web interfaces Description Non compliant code import Foundation let username = "admin" let password = ...
Insecure functionality - Swift
Need Secure functionality implementation Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of Foundation for building responsive and accessible web interfaces Description ...
Insecure object reference - Swift
Need Secure and robust authorization mechanism to prevent unauthorized access to sensitive data Context Usage of Swift 5.0 for iOS app development Usage of UIKit for building modern and responsive user interfaces Usage of Foundation for building ...
Use of software with known vulnerabilities - Swift
Need Updating software and dependencies to versions without known vulnerabilities Context Usage of Swift for iOS and macOS app development Usage of Alamofire for making network requests in iOS development Description Non compliant code import UIKit ...
Cross-site request forgery - Swift
Need Protection against cross-site request forgery attacks Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Usage of Alamofire for making HTTP requests in Swift Description Non ...
Authentication mechanism absence or evasion - Swift
Need Implementation of a robust and secure authentication mechanism Context Usage of Swift for iOS and macOS app development Usage of UIKit for building modern and responsive user interfaces Description Non compliant code import UIKit class ...