Public scan reportRepository
libp2p/go-libp2p
Scanned on Jun 5, 2026
Risk score/ 100
High risk
Summary
The libp2p/go-libp2p repository has critical quantum vulnerability exposure with 276 high-severity findings and 9 critical issues involving broken cryptographic configurations. RSA keys of 2048 bits are used extensively in production code and examples, which are already considered weak and will be trivially breakable by quantum computers. All cryptographic primitives (RSA, Ed25519, ECDSA, secp256k1) lack quantum resistance and require migration to NIST-approved post-quantum algorithms.
9
191
0
0
Top findings
- CriticalRSA key ≤ 2048 bits
examples/chat-with-mdns/main.go:92
- CriticalRSA key ≤ 2048 bits
examples/chat/chat.go:153
- CriticalRSA key ≤ 2048 bits
examples/echo/main.go:71
- CriticalRSA key ≤ 2048 bits
core/peer/peer_test.go:50
- CriticalRSA key ≤ 2048 bits
core/peer/peer_test.go:235
+ 195 more findings in the full report
Scan your own repository
Free. Results in ~90 seconds. CBOM + DORA/NIS2 PDF included.