Pattern: Use of insecure MD2, MD4 or MD5 hash function
Issue: -
Avoid using hashes based on MD2, MD4 or MD5 to hash passwords or to encrypt data. These functions are no longer considered secure. Note that this might not be a problem for some use cases like checking file integrity. However, if you want to be be sure, switch to another hashing algorithm.
This rule checks for the following calls:
hashlib.md5Crypto.Hash.MD2.newCrypto.Hash.MD4.newCrypto.Hash.MD5.newCryptodome.Hash.MD2.newCryptodome.Hash.MD4.newCryptodome.Hash.MD5.newcryptography.hazmat.primitives.hashes.MD5