gitlab.eslint.detect-pseudoRandomBytes
178
Download Count*
License
Detected usage of crypto.pseudoRandomBytes, which does not produce secure random numbers.
Run Locally
Run in CI
Defintion
rules:
- id: eslint.detect-pseudoRandomBytes
metadata:
cwe: "CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator
(PRNG)"
source-rule-url: https://github.com/nodesecurity/eslint-plugin-security/blob/master/rules/detect-pseudoRandomBytes.js
primary_identifier: eslint.detect-pseudoRandomBytes
secondary_identifiers:
- name: ESLint rule ID security/detect-pseudoRandomBytes
type: eslint_rule_id
value: security/detect-pseudoRandomBytes
license: MIT
message: >
Detected usage of crypto.pseudoRandomBytes, which does not produce secure
random numbers.
pattern: crypto.pseudoRandomBytes
severity: WARNING
languages:
- javascript
- typescript
Short Link: https://sg.run/P88N