Reporte público de escaneoRepositorio
mwiede/jsch
Escaneado el 5 jun 2026
Puntuación de riesgo/ 100
Riesgo alto
Resumen
JSch library has critical post-quantum cryptography vulnerabilities with 30 broken algorithm implementations and 165 quantum-vulnerable cryptographic primitives. The codebase extensively uses RSA, DSA, ECDSA, and legacy ciphers (3DES, Blowfish) that will be completely broken by quantum computers, creating significant long-term security and compliance risks. Immediate migration planning to NIST-approved post-quantum algorithms is essential for regulatory compliance and future-proofing.
30
165
5
0
Hallazgos principales
- Crítico3DES / TripleDES
examples/ScpToNoneCipher.java:50
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/AgentProxy.java:128
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/ChannelAgentForwarding.java:210
- CríticoRSA key ≤ 2048 bits
examples/KeyGenOpenSSHv1.java:14
- Crítico3DES / TripleDES
examples/AES.java:44
+ 195 hallazgos más en el reporte completo
Escanea tu propio repositorio
Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.