gosec

mirror of https://github.com/securego/gosec.git synced 2024-11-05 11:35:51 +00:00

History

Dimitar Banchev 0eb8143c23 Added new rule G407(hardcoded IV/nonce) The rule is supposed to detect for the usage of hardcoded or static nonce/Iv in many encryption algorithms: * The different modes of AES (mainly tested here) * It should be able to work with ascon Currently the rules doesn't check when constant variables are used. TODO: Improve the rule, to detected for constatant variable usage	2024-08-30 19:35:07 +02:00
..
issue.go	Added new rule G407(hardcoded IV/nonce)	2024-08-30 19:35:07 +02:00
issue_test.go	Fix typos in struct fields, comments, and docs (#1023 )	2023-10-05 12:59:17 +02:00

Dimitar Banchev 0eb8143c23 Added new rule G407(hardcoded IV/nonce)

The rule is supposed to detect for the usage of hardcoded or static nonce/Iv in many encryption algorithms:

* The different modes of AES (mainly tested here)
* It should be able to work with ascon

Currently the rules doesn't check when constant variables are used.

TODO: Improve the rule, to detected for constatant variable usage

2024-08-30 19:35:07 +02:00

issue.go

Added new rule G407(hardcoded IV/nonce)

2024-08-30 19:35:07 +02:00

issue_test.go

Fix typos in struct fields, comments, and docs (#1023 )

2023-10-05 12:59:17 +02:00