zeroclaw-labs/zeroclaw

Scanned on Jun 26, 2026

Risk score/ 100

Moderate risk

Summary

The repository uses AES-128 in ECB mode for WeChat channel encryption. Grover's algorithm reduces AES-128 effective security to 64 bits, making it quantum-vulnerable. Additionally, ECB mode is cryptographically weak even against classical attackers due to lack of semantic security.

Critical

High

Medium

Low

Top findings

MediumCWE-326AES-128
crates/zeroclaw-channels/src/wechat.rs:73
AES-256
Raw evidence
```
type Aes128EcbEnc = ecb::Encryptor<aes::Aes128>;
```
MediumCWE-326AES-128
crates/zeroclaw-channels/src/wechat.rs:74
AES-256
Raw evidence
```
type Aes128EcbDec = ecb::Decryptor<aes::Aes128>;
```

Scan your own repository

Free. Results in ~90 seconds. CBOM + DORA/NIS2 PDF included.

Start a free scan