Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP: Code for generating ecdsa secp256r1 objects #133

Open
wants to merge 16 commits into
base: main
Choose a base branch
from

ROA

4674d1b
Select commit
Loading
Failed to load commit list.
Open

WIP: Code for generating ecdsa secp256r1 objects #133

ROA
4674d1b
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Sep 1, 2023 in 7s

2 new alerts including 1 critical severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 critical
  • 1 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 18 in src/main/java/net/ripe/rpki/commons/crypto/util/EcKeyPairFactory.java

See this annotation in the file changed.

Code scanning / CodeQL

Use of a potentially broken or risky cryptographic algorithm High

Cryptographic algorithm
EC
Loading
may not be secure, consider using a different algorithm.

Check failure on line 26 in src/test/java/net/ripe/rpki/commons/crypto/util/PregeneratedEcKeyPairFactory.java

See this annotation in the file changed.

Code scanning / CodeQL

Hard-coded credential in API call Critical test

Hard-coded value flows to
sensitive API call
Loading
.
Hard-coded value flows to
sensitive API call
Loading
.
Hard-coded value flows to
sensitive API call
Loading
.
Hard-coded value flows to
sensitive API call
Loading
.
Hard-coded value flows to
sensitive API call
Loading
.