Avoid world-readable or world-writable file permissions | Critiq Docs

#Metadata

Rule ID: security.permissive-file-permissions
Severity: medium
Confidence: 0.8
Languages: go, java, php, python, ruby, rust
Presets: recommended, security, strict
Stability: experimental
Applies to: block
Tags: filesystem, permissions, rules-catalog, security

#Why it matters

Broad permissions expose application data to local users or processes that should not read or modify it.

#Remediation

Use least-privilege file modes and avoid world-readable or world-writable permissions.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/shared/security.permissive-file-permissions.rule.yaml.

Back to directory Open rule in repository