[master] JCEEncryptor default encryption algorithm upgrade #2004
5 new alerts including 5 high severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 5 high
See annotations below for details.
Annotations
Code scanning / CodeQL
Using a static initialization vector for encryption High
should not be used for encryption.Code scanning / CodeQL
Use of a broken or risky cryptographic algorithm High
is weak and should not be used.Code scanning / CodeQL
Use of a broken or risky cryptographic algorithm High
is weak and should not be used.Code scanning / CodeQL
Use of a broken or risky cryptographic algorithm High
is weak and should not be used.Code scanning / CodeQL
Use of a broken or risky cryptographic algorithm High
is weak and should not be used.