QuantumScan
paramiko/paramiko
Paramiko SSH library contains 52 quantum-vulnerable cryptographic implementations including RSA, ECDSA, ECDH, and classical Diffie-Hellman primitives that will be broken by quantum computers. SHA-1 and MD5 are used in 10 critical locations, creating immediate collision attack risks. Migration to NIST-approved post-quantum algorithms (ML-KEM, ML-DSA, SLH-DSA) is essential for long-term security compliance.
| File | Algorithm | Severity |
|---|---|---|
| paramiko/sftp.py:161 | MD5 | critical |
| tests/agent.py:113 | RSA key ≤ 2048 bits | critical |
| tests/agent.py:104 | RSA key ≤ 2048 bits | critical |
| tests/conftest.py:132 | RSA key ≤ 2048 bits | critical |
| tests/test_packetizer.py:107 | SHA-1 | critical |
| tests/test_packetizer.py:25 | SHA-1 | critical |
| tests/test_packetizer.py:53 | SHA-1 | critical |
| tests/test_packetizer.py:83 | SHA-1 | critical |
| tests/test_util.py:25 | SHA-1 | critical |
| paramiko/__init__.py:115 | RSA | high |
Anyone with this link can view the risk score and top findings — no sign-in required. Source code stays private.
https://quantumscan.io/en/share/1b7fc714-ff1d-4c23-bd09-c77182583997Show your project's post-quantum readiness in the README. The badge updates automatically after every new scan.
Preview
[](https://github.com/paramiko/paramiko)<a href="https://github.com/paramiko/paramiko"><img src="https://quantumscan.io/api/badge/paramiko/paramiko.svg" alt="Post-Quantum Readiness" /></a>Add badge to your README
Show your quantum-safety score directly on GitHub.
[](https://quantumscan.io/en/scan/1b7fc714-ff1d-4c23-bd09-c77182583997)Save your results & track future changes
Create a free account to get drift alerts, compliance PDF exports, and scan history.
- Weekly drift alerts when new vulnerabilities appear
- Track risk score over time across all your repos
- Export DORA / NIS2 compliance PDF for auditors
Free forever for design partners · No credit card