Skip to content

Bogus rule with id 'ddddddd' named pattern XXX #1

Closed
Closed
Bogus rule with id 'ddddddd' named pattern XXX#1
@PavelBansky

Description

@PavelBansky
PavelBansky
opened on Feb 20, 2017

Bogus rule defined in default/security/cryptography/hash_algorithm.json

{
    "id": "ddddddd",
    "name": "XXX",
    "active": true,
    "tags": [
        "Cryptography.BannedHashAlgorithm"
    ],
    "severity": "critical",
    "description": "A weak or broken hash algorithm was detected.",
    "replacement": "Consider switching to use SHA-256 or SHA-512 instead.",
    "rule_info": "https://github.com/Microsoft/DevSkim/blob/master/guidance/DS126858.md",
    "patterns": [
        {
            "pattern": "XXXXX",
            "subtype": ["string"],
            "type": "regex"
        }
    ]
},

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions