auto-claude: 2.3 - Replace hardcoded password in scripts/social_media_audit.py with safe fallback

2026-01-10 12:50:39 +01:00 · 2026-01-10 12:50:39 +01:00 · b4dcca6d55
commit b4dcca6d55
parent 4cb505f21c
1 changed files with 4 additions and 1 deletions
--- a/scripts/social_media_audit.py
+++ b/scripts/social_media_audit.py
@ -62,9 +62,12 @@ logging.basicConfig(
 logger = logging.getLogger(__name__)

 # Database configuration
+# WARNING: The fallback DATABASE_URL uses a placeholder password.
+# Production credentials MUST be set via the DATABASE_URL environment variable.
+# NEVER commit real credentials to version control (CWE-798).
 DATABASE_URL = os.getenv(
    'DATABASE_URL',
-    'postgresql://nordabiz_app:NordaBiz2025Secure@127.0.0.1:5432/nordabiz'
+    'postgresql://nordabiz_app:CHANGE_ME@127.0.0.1:5432/nordabiz'
 )

 # Request configuration