gitlab.find_sec_bugs.DEFAULT_HTTP_CLIENT-1

unknown

Download Count*

MIT

License

DefaultHttpClient with default constructor is not compatible with TLS 1.2

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: find_sec_bugs.DEFAULT_HTTP_CLIENT-1
    patterns:
      - pattern: new org.apache.http.impl.client.DefaultHttpClient(...);
    message: |
      DefaultHttpClient with default constructor is not compatible with TLS 1.2
    languages:
      - java
    severity: WARNING
    metadata:
      category: security
      technology:
        - java
      primary_identifier: find_sec_bugs.DEFAULT_HTTP_CLIENT-1
      secondary_identifiers:
        - name: Find Security Bugs-DEFAULT_HTTP_CLIENT
          type: find_sec_bugs_type
          value: DEFAULT_HTTP_CLIENT
      license: MIT

Short Link: https://sg.run/dPw5