Potential security code smells #69
Description
Hi!
I'm building a linter to detect security vulnerabilities for puppet scripts. Our linter found some smells that might lead to vulnerabilities such as empty passwords, admin by default, and weak passwords. It would be important to get your feedback since you have more context on the application than we do. How can we discuss this in private? I didn't find any vulnerability disclosure guidelines.
Thanks!