File permission open to 'other' detected.

Rule ID: java_lang_file_permission_others
Languages: java
Source: file_permission_others.yml

Description

Having overly permissive file permissions, such as extending read, write, or execute privileges to 'other', is risky and could lead to accidental exposure of sensitive information.

Remediations

✅ Keep file permissions as restrictive as possible. With the Posix enum, for example, prefer 'groups' to 'other', when extending privileges to users without owner privileges.

  permissions.add(PosixFilePermission.GROUP_WRITE)

Resources

Associated CWE

CWE-732: Incorrect Permission Assignment for Critical Resource

Configuration

To skip this rule during a scan, use the following flag

bearer scan /path/to/your-project/ --skip-rule=java_lang_file_permission_others

To run only this rule during a scan, use the following flag

bearer scan /path/to/your-project/ --only-rule=java_lang_file_permission_others

Ready to take the next step? Learn more about Bearer Cloud.