Avoid storing secrets in Electron local stores without hardening | Critiq Docs

#Metadata

Rule ID: ts.security.electron-insecure-local-state
Severity: medium
Confidence: 0.82
Languages: javascript, typescript
Presets: security, strict
Stability: stable
Applies to: block
Tags: electron, rules-catalog, security, storage

#Why it matters

Local JSON stores are readable by other processes and backups unless encrypted with platform APIs.

#Remediation

Prefer OS keychains, encrypted vaults, or short-lived session material instead of long-lived plaintext secrets on disk.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/typescript/ts.security.electron-insecure-local-state.rule.yaml.

Back to directory Open rule in repository