hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-19 14:04:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

Swift: Add a reference for swift/hardcoded-key.

Browse Source
This commit is contained in:
Geoffrey White
2023-01-03 17:27:31 +00:00
parent b3a3957dc9
commit e5a74cb29c
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
swift/ql/src/queries/Security/CWE-321/HardcodedEncryptionKey.qhelp
View File

@@ -14,4 +14,8 @@
<p>The following example shows a few cases of instantiating a cipher with various encryption keys. In the 'BAD' cases, the key material is hardcoded, making the encrypted data vulnerable to recovery. In the 'GOOD' cases, the key material is randomly generated and not hardcoded, which protects the encrypted data against recovery.</p>
<sample src="HardcodedEncryptionKey.swift" />
</example>
<references>
<li>OWASP: <a href="https://cheatsheetseries.owasp.org/cheatsheets/Key_Management_Cheat_Sheet.html">Key Management Cheat Sheet</a></li>
</references>
</qhelp>