sast_insecure_crypto
Analyzes source code to detect weak cryptographic practices, such as MD5, SHA1, DES, RC4, and insecure random number generation.
Instructions
Detect weak cryptography: createHash('md5'), createHash('sha1'), Math.random() for token generation, DES/RC4 usage.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| path | Yes | Directory path containing source files to analyze |