Relatório público de scanRepositório
tlsfuzzer/python-ecdsa
Escaneado em 11 de mai. de 2026
Risk score/ 100
Risco crítico
Resumo
This repository implements ECDSA cryptographic signatures, which are fundamentally vulnerable to quantum attacks via Shor's algorithm. The library contains 143 high-severity quantum-vulnerable findings across elliptic curve implementations, plus critical usage of broken hash functions (SHA-1, MD5) that compound the security risks. Immediate migration planning to post-quantum cryptography is essential for any production deployments.
3
143
0
1
Principais findings
- CríticoSHA-1
src/ecdsa/test_malformed_sigs.py:10
SHA-256 or SHA3-256
- CríticoSHA-1
src/ecdsa/rfc6979.py:50
SHA-256 or SHA3-256
- CríticoMD5
src/ecdsa/test_malformed_sigs.py:9
SHA3-256 or SHA-256
- AltoEd25519 / EdDSA
speed.py:100
ML-DSA (CRYSTALS-Dilithium) or SLH-DSA
- AltoECDH / ECDHE
src/ecdsa/test_ecdh.py:24
ML-KEM (CRYSTALS-Kyber)
+ 142 findings no relatório completo
Escaneie seu próprio repositório
Grátis. Resultados em ~90 segundos. CBOM + PDF DORA/NIS2 inclusos.