safishamsi/graphify

Escaneado el 17 jun 2026

Puntuación de riesgo/ 100

Riesgo alto

Resumen

The repository contains 6 critical cryptographic vulnerabilities using broken algorithms (SHA-1, MD5). Most concerning are MD5-based HTTP Digest Authentication implementations that could allow credential theft and session hijacking. While some SHA-1 usage appears non-security-critical (hashing for deduplication), the MD5 authentication mechanism poses immediate risk to application security.

Crítico

Alto

Medio

Bajo

Hallazgos principales

CríticoSHA-1

graphify/_minhash.py:47

SHA-256 or SHA3-256

Evidencia

hv = np.uint64(struct.unpack("<I", hashlib.sha1(v).digest()[:4])[0])

CríticoSHA-1

graphify/transcribe.py:61

SHA-256 or SHA3-256

Evidencia

url_hash = hashlib.sha1(url.encode(), usedforsecurity=False).hexdigest()[:12]

CríticoMD5
worked/httpx/raw/auth.py:85
SHA3-256 or SHA-256
Evidencia
```
cnonce = hashlib.md5(str(time.time()).encode()).hexdigest()[:8]
```

CríticoMD5

worked/httpx/raw/auth.py:89

SHA3-256 or SHA-256

Evidencia

ha1 = hashlib.md5(f"{self.username}:{realm}:{self.password}".encode()).hexdigest()

CríticoMD5

worked/httpx/raw/auth.py:90

SHA3-256 or SHA-256

Evidencia

ha2 = hashlib.md5(f"{request.method}:{request.url.path}".encode()).hexdigest()

+ 1 hallazgo más en el reporte completo

Escanea tu propio repositorio

Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.

Iniciar un escaneo gratis