PostHog/posthog

Scanned on Jun 26, 2026

Risk score/ 100

Moderate risk

Summary

PostHog uses MD5 for hashing in production STL cryptographic utilities, which is quantum-vulnerable under Grover's algorithm (reduced to 64-bit security). JWT authentication in enterprise edition uses RS256, which will be completely broken by Shor's algorithm on quantum computers within 5–15 years. No immediate cryptographic compromise, but HNDL (Harvest Now, Decrypt Later) risk exists for any long-lived session tokens or signed artifacts.

Critical

High

Medium

Low

Top findings

CriticalCWE-328MD5
common/hogvm/python/stl/crypto.py:22
SHA3-256 or SHA-256
Raw evidence
```
digest = hashlib.md5(data.encode()).digest()
```
CriticalCWE-328MD5
common/hogvm/python/stl/__init__.py:15
SHA3-256 or SHA-256
Raw evidence
```
from .crypto import md5, sha256, sha256HmacChain
```

CriticalCWE-328MD5

common/hogvm/python/stl/crypto.py:18

SHA3-256 or SHA-256

Raw evidence

def md5(data: str | None, encoding: Literal["hex", "base64", "base64url", "binary"] = "hex") -> str | None:

HighCWE-327JWT quantum-vulnerable algorithm
ee/api/agentic_provisioning/test/base.py:40
HS256 (symmetric) or post-quantum signature schemes
Raw evidence
```
"algorithm": "RS256",
```

Scan your own repository

Free. Results in ~90 seconds. CBOM + DORA/NIS2 PDF included.

Start a free scan