Small edit to hmac weak key doc (#391)

Signed-off-by: Eric Brown <eric.brown@securesauce.dev>
securesauce · Mar 27, 2024 · e21de6a · e21de6a
1 parent a519096
commit e21de6a
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/precli/rules/python/stdlib/hmac_weak_key.py b/precli/rules/python/stdlib/hmac_weak_key.py
@@ -28,14 +28,14 @@
 import secrets
 
 
-key = secrets.token_bytes(None)
+key = secrets.token_bytes(nbytes=32)
 message = b"Hello, world!"
 hmac.new(key, msg=message, digestmod=hashlib.sha3_384)
 ```
 
 ## Remediation
 
-Adjust the key size to be least the length of the digest size.
+Adjust the key size to be at least the size of the digest.
 
 ```python
 import hashlib