Evidence-based · Updated automatically
Post-Quantum Cryptography Risk Analysis
We run QuantumScan on widely used open-source tools and publish the results. Real scores, real findings, actionable migration paths.
Curated reports
tlsfuzzer/python-ecdsaPythonpython-ecdsa is a pure-Python ECDSA implementation with 36 million PyPI downloads per month. The library implements the exact algorithm that Shor's qu…
May 29, 2026bitcoin/bitcoinC++Bitcoin's security model depends entirely on secp256k1 ECDSA for transaction signing and Schnorr signatures (Taproot). Both are broken by Shor's algor…
May 29, 2026gpg/gnupgCGnuPG defaults to RSA-2048/4096 and DSA for key generation — both fully broken by Shor's algorithm on a cryptographically relevant quantum computer. E…
Jun 18, 2026gnutls/gnutlsCGnuTLS is a widely-deployed TLS library used in Linux distributions, GNOME, and server software. It supports RSA, ECDSA, and DHE — all quantum-vulnera…
May 29, 2026hashicorp/vaultGoHashiCorp Vault uses AES-GCM-256 for data encryption at rest (quantum-safe) but relies on RSA and ECDSA for transit secrets and PKI operations. The Tr…
May 29, 2026bitwarden/serverC#Bitwarden's vault data is encrypted with AES-256-CBC — symmetric, therefore quantum-safe (Grover's attack halves security to 128-bit, still acceptable…
Jun 18, 2026