SSLMate go-pkcs12 utility at version 0.2.0 is using pbeWithSHA1And40BitRC2-CBC encryption for the truststore which is considered outdated and weak for modern standards. It also doesn't allow for this feature to be used in FIPS enabled environment.
0.4.0 version added option to use modern encryption standards that work on FIPS enabled environments.
SSLMate
go-pkcs12utility at version0.2.0is usingpbeWithSHA1And40BitRC2-CBCencryption for the truststore which is considered outdated and weak for modern standards. It also doesn't allow for this feature to be used in FIPS enabled environment.0.4.0version added option to use modern encryption standards that work on FIPS enabled environments.