CodeGuru
Detector Library
JavaScript detectors (78/78)
Improper access controlSensitive data stored unencrypted due to partial encryptionPseudorandom number generatorsOS command injectionURL redirection to untrusted siteInteger overflowProtection mechanism failureNon-literal regular expressionTainted input for Docker APIUsage of an API that is not recommendedXML external entityServer-side request forgeryNew function detectedStack trace exposureTiming attackSNS don't bind subscribe and publishInvoke super appropriatelyNoSQL injectionHardcoded credentialsInsecure cookieCross-site scriptingHardcoded IP addressAWS credentials loggedXPath injectionData loss in a batch requestPath traversalLeast privilege violationDNS prefetchingResource leakInsufficiently protected credentialsFile extension validationInsecure connection using unencrypted protocolCross-site request forgeryTypeof expressionSet SNS Return Subscription ARNFile and directory information exposureMissing Amazon S3 bucket owner conditionInsecure hashingNumeric truncation errorClient-side KMS reencryptionAWS client not reused in a Lambda functionLDAP injectionBatch request with unchecked failuresCryptographic key generatorUnauthenticated Amazon SNS unsubscribe requests might succeedUnverified hostnameOrigins-verified cross-origin communicationsLoose file permissionsUnsanitized input is run as codeMissing paginationUntrusted Amazon Machine ImagesImproper certificate validationInsecure CORS policyDeserialization of untrusted objectSensitive information leakCheck failed records when using kinesisWeak obfuscation of web requestsCatch and swallow exceptionLogging of sensitive informationLimit request lengthString passed to `setInterval` or `setTimeout`Log injectionOverride of reserved variable names in a Lambda functionImproper restriction of rendered UI layers or framesInsecure cryptographyInsecure object attribute modificationSession fixationAvoid nan in comparisonImproper input validationDisabled HTML autoescapeUse of a deprecated methodUnvalidated expansion of archive filesFile injectionSendfile injectionSQL injectionHeader injectionInsecure temporary file or directoryInefficient polling of AWS resource
Insecure cryptography Critical
Misuse of cryptography-related APIs can create security vulnerabilities. This includes algorithms with known weaknesses, certain padding modes, the lack of integrity checks, insufficiently large key sizes, and insecure combinations of the previous items.
Detector ID
javascript/insecure-cryptography@v1.0
Category
Noncompliant example
1function insecureCryptographyNoncompliant()
2{
3 var ciphers = [`TLS_DH_anon_WITH_AES_256_GCM_SHA384`,
4 `TLS_AES_128_GCM_SHA256`,
5 `ECDHE-ECDSA-AES128-GCM-SHA256`].join(':')
6 var options = {
7 hostname: 'www.example.com',
8 port: 443,
9 path: '/',
10 method: 'GET',
11 secureProtocol: 'TLSv1_2_method',
12 // Noncompliant: insecure TLS cipher suite is used.
13 ciphers:ciphers
14 }
15
16 var req = https.request(options, (res) => {
17 res.on('data', (d) => {
18 process.stdout.write(d)
19 })
20 })
21}
Compliant example
1function insecureCryptographyCompliant()
2{
3 var ciphers = [`TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256` ,
4 `TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384`,
5 `TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256`,
6 `TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384`,
7 `TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256`,
8 `TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256`,
9 `TLS_AES_128_GCM_SHA256`,
10 `TLS_AES_256_GCM_SHA384`,
11 '!aNULL',
12 '!eNULL',
13 '!NULL',
14 '!DES',
15 '!RC4',
16 '!MD5'].join(':')
17 var options = {
18 hostname: 'www.example.com',
19 port: 443,
20 path: '/',
21 method: 'GET',
22 secureProtocol: 'TLSv1_2_method',
23 // Compliant: secure TLS cipher suite is used.
24 ciphers:ciphers
25 }
26
27 var req = https.request(options, (res) => {
28 res.on('data', (d) => {
29 process.stdout.write(d)
30 })
31 })
32}