gitlab.bandit.B504

385

Download Count*

License

ssl.wrap_socket call with no SSL/TLS protocol version specified, the default SSLv23 could be insecure, possible security issue.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: bandit.B504
    patterns:
      - pattern: ssl.wrap_socket()
    message: >
      ssl.wrap_socket call with no SSL/TLS protocol version specified, the
      default SSLv23 could be insecure, possible security issue.
    metadata:
      cwe: "CWE-326: Inadequate Encryption Strength"
      owasp: "A3: Sensitive Data Exposure"
      primary_identifier: bandit.B504
      secondary_identifiers:
        - name: Bandit Test ID B504
          type: bandit_test_id
          value: B504
      license: MIT
    severity: INFO
    languages:
      - python

Short Link: https://sg.run/2bNr