search

securesauce / precli

Precaution CLI - command line static application security testing tool
https://precli.readthedocs.io/
Other
22 stars 3 forks source link

Add suggested fixes for weak hashes in hmac function #404

Closed ericwb closed 6 months ago

ericwb commented 6 months ago

This change adds suggested fixes for the hmac_weak_hash rule. So if someone uses md5 digest in the hmac call, it should suggest sha256.