gitlab.bandit.B304-5

385

Download Count*

License

Detected RC2 cipher algorithm which is considered insecure. The algorithm has known vulnerabilities and is difficult to use securely. Use AES instead.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: bandit.B304-5
    patterns:
      - pattern-either:
          - pattern: Cryptodome.Cipher.ARC2.new(...)
          - pattern: Crypto.Cipher.ARC2.new
    message: >
      Detected RC2 cipher algorithm which is considered insecure. The algorithm
      has known vulnerabilities and is difficult to use securely. Use AES
      instead.
    metadata:
      cwe: "CWE-327: Use of a Broken or Risky Cryptographic Algorithm"
      owasp: "A3: Sensitive Data Exposure"
      primary_identifier: bandit.B304-5
      secondary_identifiers:
        - name: Bandit Test ID B304
          type: bandit_test_id
          value: B304
      license: MIT
    severity: WARNING
    languages:
      - python

Short Link: https://sg.run/8nvQ