greprules.io
Sign inSubmit rule
Explore/gitlab-sast-rules-lgpl-kotlin-crypto-rule-custommessagedigest

Crypto CustomMessageDigest

Implementing a custom MessageDigest is error-prone. National Institute of Standards and Technology(NIST) recommends the use of SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224, or SHA-512/256.

IndexedPublic repositoryMediumMedium confidenceVerifiedLGPL-3.0-onlykotlin
greprules fetch gitlab-sast-rules-lgpl-kotlin-crypto-rule-custommessagedigest --engine opengrep

Description

Implementing a custom MessageDigest is error-prone. National Institute of Standards and Technology(NIST) recommends the use of SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224, or SHA-512/256.

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License
LGPL-3.0-only
Source context
Public repository
Validation status
Verified
Trust signals
100 downloads0 direct100 via packs
· 0 stars · Trust score 91How trust works
Included packs
2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark usefulReport false positiveSuggest metadata