hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 18:25:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update python/ql/src/experimental/Security/CWE-338/InsecureRandomness.ql

Browse Source 
Co-authored-by: Rasmus Wriedt Larsen <rasmuswriedtlarsen@gmail.com>
This commit is contained in:
museljh
2022-02-01 19:00:06 +08:00
committed by GitHub
parent a6002186bd
commit 012434b152
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python/ql/src/experimental/Security/CWE-338/InsecureRandomness.ql
View File

@@ -1,6 +1,8 @@
/**
* @name Insecure randomness
* @description Using insufficient randomness as the key of a cryptographic algorithm can allow an attacker to compromise security.
* @description Using a cryptographically weak pseudo-random number generator to generate a
* security-sensitive value may allow an attacker to predict what value will
* be generated.
* @kind path-problem
* @problem.severity warning
* @security-severity 7.8