You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hardcoded key with an empty string
The key is hardcoded here. I know this empty string is a default key and will only be available when the key is not provided. But a default key with an empty string is also considered insecure, and generating a random string for the default key may be a better choice.
publicstaticfinalStringKEY = "";
The text was updated successfully, but these errors were encountered:
Hello! I'm new to DataX and when I was browsing the code I found some potential cryptographic risks.
DES is used here and 3DES is used here. Both DES and 3DES are considered insecure. Is it for compacity?
The key is hardcoded here. I know this empty string is a default key and will only be available when the key is not provided. But a default key with an empty string is also considered insecure, and generating a random string for the default key may be a better choice.
The text was updated successfully, but these errors were encountered: