gitlab.bandit.B303-3

385

Download Count*

License

Detected MD2 hash algorithm which is considered insecure. This algorithm has many known vulnerabilities and has been deprecated. Use SHA256 or SHA3 instead.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: bandit.B303-3
    patterns:
      - pattern-either:
          - pattern: Crypto.Hash.MD2.new(...)
          - pattern: Cryptodome.Hash.MD2.new (...)
    message: >
      Detected MD2 hash algorithm which is considered insecure. This algorithm

      has many known vulnerabilities and has been deprecated. Use SHA256 or SHA3 instead.
    metadata:
      cwe: CWE-327
      shortDescription: Use of a Broken or Risky Cryptographic Algorithm
      owasp: A3:2017-Sensitive Data Exposure
      primary_identifier: bandit.B303-3
      secondary_identifiers:
        - name: Bandit Test ID B303
          type: bandit_test_id
          value: B303
      license: MIT
    severity: WARNING
    languages:
      - python

Short Link: https://sg.run/nq5r