New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
policies/password: merge hibp add zxcvbn #4001
Conversation
"""Check if password is in HIBP DB. Hashes given Password with SHA1, uses the first 5 | ||
characters of Password in request and checks if full hash is in response. Returns 0 | ||
if Password is not in result otherwise the count of how many times it was used.""" | ||
pw_hash = sha1(password.encode("utf-8")).hexdigest() # nosec |
Check failure
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data
Codecov ReportBase: 92.54% // Head: 92.54% // No change to project coverage 👍
Additional details and impacted files@@ Coverage Diff @@
## main #4001 +/- ##
=======================================
Coverage 92.54% 92.54%
=======================================
Files 470 470
Lines 22852 22852
=======================================
Hits 21145 21145
Misses 1707 1707
Flags with carried forward coverage won't be shown. Click here to find out more. Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. ☔ View full report at Codecov. |
✅ Deploy Preview for authentik ready!
To edit notification comments on pull requests, go to your Netlify site settings. |
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
afe410a
to
8a714b9
Compare
closes #3993