Reporte público de escaneoRepositorio
mwiede/jsch
Escaneado el 4 jun 2026
Puntuación de riesgo/ 100
Riesgo alto
Resumen
The JSch library has critical quantum vulnerability exposure across 33 files with 206 total findings. The codebase extensively uses quantum-vulnerable algorithms including RSA, ECDSA, and DSA, with particular concern around hardcoded weak key sizes (1024-bit RSA) and deprecated ciphers (3DES, Blowfish). Immediate migration planning to NIST-approved post-quantum cryptography standards is essential to maintain security in the quantum era.
30
165
5
0
Hallazgos principales
- Crítico3DES / TripleDES
examples/ScpToNoneCipher.java:50
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/AgentProxy.java:128
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/ChannelAgentForwarding.java:210
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/OpenSshCertificateKeyTypes.java:31
- CríticoRSA key ≤ 2048 bits
src/main/java/com/jcraft/jsch/OpenSshCertificateKeyTypes.java:33
+ 195 hallazgos más en el reporte completo
Escanea tu propio repositorio
Gratis. Resultados en ~90 segundos. CBOM + PDF DORA/NIS2 incluidos.