ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
rspec/rules/S2277/java/rule.adoc

26 lines
723 B
Plaintext
Raw Normal View History

RULEAPI-609 Support superseded rules
2021-06-04 14:50:38 +02:00
//// This rule is superseded by RSPEC-5542
//// Please consider implementing this latter instead.
Without OAEP in RSA encryption, it takes less work for an attacker to decrypt the data or infer patterns from the ciphertext. This rule logs an issue as soon as a literal value starts with ``++RSA/NONE++``.
Add rules 2000-2999
2020-06-30 12:48:07 +02:00
== Noncompliant Code Example
----
Cipher rsa = javax.crypto.Cipher.getInstance("RSA/NONE/NoPadding");
----
== Compliant Solution
----
Cipher rsa = javax.crypto.Cipher.getInstance("RSA/ECB/OAEPWITHSHA-256ANDMGF1PADDING");
----
include::../see.adoc[]
Export comments and rspec-to-rspec links from jira
2021-06-02 20:44:38 +02:00
Fix the comment display: rule-id, timestamp, GH visibility, link direction
2021-06-03 09:05:38 +02:00
ifdef::env-github,rspecator-view[]
RULEAPI-576: add a horizontal rule between rule description and comments
2021-06-08 15:52:13 +02:00
'''
Export comments and rspec-to-rspec links from jira
2021-06-02 20:44:38 +02:00
== Comments And Links
(visible only on this page)
include::../comments-and-links.adoc[]
Fix the comment display: rule-id, timestamp, GH visibility, link direction
2021-06-03 09:05:38 +02:00
endif::env-github,rspecator-view[]
Reference in New Issue Copy Permalink