Overhauled java_crypto_rule-CipherDESedeInsecure with Community Rule integration, added Test (!397) · Merge requests · GitLab.org / security-products / sast-rules · GitLab

Dinura Seneviratne requested to merge feat/440973/Desede-deprecated into main Feb 14, 2024

What does this MR do?

Aims to correct rule-CipherDESedeInsecure with pattern update. Uses findings from community rule: https://github.com/semgrep/semgrep-rules/blob/release/java/lang/security/audit/crypto/desede-is-deprecated.yaml

Update crypto/java_crypto_rule-CipherDESInsecure.yml

Added Test Case crypto/java_crypto_rule-CipherDESInsecure.java

What are the relevant issue numbers?

Embed Semgrep Community Rule java.lang.security.audit.crypto.desede-is-deprecated.desede-is-deprecated (#440973) · Issues · GitLab.org / GitLab · GitLab

Edited Feb 15, 2024 by Dinura Seneviratne