Closed kdestin closed 1 month ago
This pull request migrates from md5 to sha256
https://github.com/Azure/azureml-examples/blob/6a36786a3f8c8d8e1b1b4cf82f1be966eec842df/sdk/python/jobs/single-step/pytorch/distributed-training-yolov5/yolov5/utils/dataloaders.py#L106
CodeQL warns against weak cryptography. This use of md5 doesn't seem to appear in a cryptographically sensitive context, but the easiest remediation for the CodeQL warnings is to switch to an approved hash function.
Description
This pull request migrates from md5 to sha256
https://github.com/Azure/azureml-examples/blob/6a36786a3f8c8d8e1b1b4cf82f1be966eec842df/sdk/python/jobs/single-step/pytorch/distributed-training-yolov5/yolov5/utils/dataloaders.py#L106
CodeQL warns against weak cryptography. This use of md5 doesn't seem to appear in a cryptographically sensitive context, but the easiest remediation for the CodeQL warnings is to switch to an approved hash function.
Checklist