-
Bug
-
Resolution: Won't Do
-
High
-
Honolulu Release
-
None
Sonarcloud identified the following security bugs in your project and, as agreed by the TSC, should be fixed within the Honolulu release. Any not finished in Honolulu must be fixed within the Istanbul release. Follow each of the URLs for details on each each bug, along with recommended fixes.
If any of the links below fail, please find your code on the master list found at <https://sonarcloud.io/organizations/onap/issues?resolved=false&sonarsourceSecurity=weak-cryptography>.
Project: onap_music
Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
Message: Use secure mode and padding scheme.
Severity: BLOCKER
Line: 82
Effort:
Creation-Date: 2019-06-25T15:20:59+0200
URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXBV0iK3g-g0c4tsZwwS&open=AXBV0iK3g-g0c4tsZwwS
Project: onap_music
Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
Message: Use secure mode and padding scheme.
Severity: BLOCKER
Line: 141
Effort:
Creation-Date: 2019-06-25T15:20:59+0200
URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXBV0iK3g-g0c4tsZwwT&open=AXBV0iK3g-g0c4tsZwwT
Project: onap_music
Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
Message: Use secure mode and padding scheme.
Severity: BLOCKER
Line: 175
Effort:
Creation-Date: 2019-06-25T15:20:59+0200
URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXGFqwL7PUMrwKN_PfEt&open=AXGFqwL7PUMrwKN_PfEt
Project: onap_music
Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
Message: Use secure mode and padding scheme.
Severity: BLOCKER
Line: 205
Effort:
Creation-Date: 2019-06-25T15:20:59+0200
URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXGFqwL7PUMrwKN_PfEu&open=AXGFqwL7PUMrwKN_PfEu
Project: onap_music
Component: onap_music:music-core/src/main/java/org/onap/music/main/CipherUtil.java
Message: Use a dynamically-generated, random IV.
Severity: CRITICAL
Line: 206
Effort: 15min
Creation-Date: 2019-06-25T15:20:59+0200
URL: https://sonarcloud.io/project/issues?id=onap_music&issues=AXcItibfQSlARQbF3dtR&open=AXcItibfQSlARQbF3dtR======
- clones
-
OPTFRA-924 fix CRITICAL weak-cryptography issues identified in sonarcloud
- Closed
- relates to
-
REQ-443 CONTINUATION OF BEST PRACTICES BADGING SCORE IMPROVEMENTS FOR SILVER LEVEL
- In Progress