rspec/rules/S5344/go/message.adoc

=== Message

* Argon2i: "Use Argon2id instead of Argon2i"
* Argon2id: "Use strong Argon2id parameters"
* For scrypt: "Use strong scrypt parameters"
* For PBKDF2: "Use at least ``+{min_iterations}+`` PBKDF2 iterations"
** If `hash_name` is `"sha1"`, then min_iterations is 1,300,000
** If `hash_name` is `"sha256"`, then min_iterations is 600,000
** If `hash_name` is `"sha512"`, then min_iterations is 210,000
* For bcrypt: "Use at least 10 rounds of bcrypt"
Create rule S5344: Passwords should not be stored in plaintext or with a fast hashing algorithm (#4655) * Add go to rule S5344 * Add description for S5344 for Go * Add message * Extend message * Update rules/S5344/go/message.adoc Co-authored-by: teemu-rytilahti-sonarsource <teemu.rytilahti@sonarsource.com> * Update rules/S5344/go/message.adoc Co-authored-by: teemu-rytilahti-sonarsource <teemu.rytilahti@sonarsource.com> --------- Co-authored-by: daniel-teuchert-sonarsource <daniel-teuchert-sonarsource@users.noreply.github.com> Co-authored-by: Daniel Teuchert <daniel.teuchert@sonarsource.com> Co-authored-by: daniel-teuchert-sonarsource <141642369+daniel-teuchert-sonarsource@users.noreply.github.com> Co-authored-by: teemu-rytilahti-sonarsource <teemu.rytilahti@sonarsource.com> 2025-02-12 10:44:28 +01:00			`=== Message`

			`* Argon2i: "Use Argon2id instead of Argon2i"`
			`* Argon2id: "Use strong Argon2id parameters"`
			`* For scrypt: "Use strong scrypt parameters"`
			* For PBKDF2: "Use at least ``+{min_iterations}+`` PBKDF2 iterations"
			** If `hash_name` is `"sha1"`, then min_iterations is 1,300,000
			** If `hash_name` is `"sha256"`, then min_iterations is 600,000
			** If `hash_name` is `"sha512"`, then min_iterations is 210,000
			`* For bcrypt: "Use at least 10 rounds of bcrypt"`