Usage of permissive file permission ('other')

Rule ID: java_lang_file_permission_others
Languages: java
Source: file_permission_others.yml

Description

Granting overly permissive file permissions, especially to 'other', poses a significant security risk by potentially exposing sensitive information to unauthorized users.

Remediations

Do keep file permissions as restrictive as necessary. Opt for granting privileges to 'groups' rather than 'other' to minimize the risk of unauthorized access.
```
permissions.add(PosixFilePermission.GROUP_WRITE)
```

References

Java Files class
Java PosixFilePermission enum

Associated CWE

CWE-732: Incorrect Permission Assignment for Critical Resource

Configuration

To skip this rule during a scan, use the following flag

bearer scan /path/to/your-project/ --skip-rule=java_lang_file_permission_others

To run only this rule during a scan, use the following flag

bearer scan /path/to/your-project/ --only-rule=java_lang_file_permission_others