Avoid deprecated TLS/SSL protocol versions | Critiq Docs

#Metadata

Rule ID: java.security.insecure-ssl-context
Severity: high
Confidence: 0.95
Languages: java
Presets: security, strict
Stability: stable
Applies to: block
Tags: java, rules-catalog, security, tls

#Why it matters

Pre-TLSv1.2 protocols are deprecated and vulnerable to known attacks such as POODLE and BEAST.

#Remediation

Use `SSLContext.getInstance("TLSv1.2")` or `"TLSv1.3"` and rely on platform defaults where possible.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/java/java.security.insecure-ssl-context.rule.yaml.

Back to directory Open rule in repository