sdk/golang/Standard Library/GoCrypto

GoCrypto

Weak cryptographic algorithms: crypto/md5, crypto/sha1, crypto/des, crypto/rc4. All New() and Sum() calls are findings — these algorithms are cryptographically broken.

2 sinks

Taint flow0 sources → 2 sinks

Sinks — dangerous call

.New()Creates new hash instance using the weak algorithm

.Sum()Computes weak hash

Sinks

— dangerous functions taint must not reach

.New()Sink

Signature

New() hash.Hash

Creates new hash instance using the weak algorithm. Always a finding.

.Sum()Sink

Signature

Sum(data []byte) [N]byte

Computes weak hash. Always a finding.

Fully-Qualified Names

FQN	Field
crypto/sha256	fqns[0]
crypto/sha512	fqns[1]
crypto/hmac	fqns[2]
crypto/aes	fqns[3]
sha256.*	patterns
sha512.*	patterns
hmac.*	patterns

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

Import

go.mod

// standard library — no go.mod entry required

rule.py

from codepathfinder.go_rule import GoCrypto

Rules Using This Class

GO-CRYPTO-001 GO-CRYPTO-002 GO-CRYPTO-003 GO-CRYPTO-004 GO-CRYPTO-005

← PreviousGoContext

Next →GoCryptoAES