Blocker
The database credentials (with full RW+ access) are stored as clear text in several source files and scripts. This includes credentials for a number of organizations.
This needs to get factored out of the application source code and scripts:
* For the application they can become build parameter values or just left as a configuration step.
* For the scripts they should just be passed in as command arguments or sourced from user files. (could be ant properties).
This is important as the source code gets indexed by several different applications. We also don't control Subversion. An accidental mistake in SVN configuration could expose these credentials.
This needs to get factored out of the application source code and scripts:
* For the application they can become build parameter values or just left as a configuration step.
* For the scripts they should just be passed in as command arguments or sourced from user files. (could be ant properties).
This is important as the source code gets indexed by several different applications. We also don't control Subversion. An accidental mistake in SVN configuration could expose these credentials.
