Avoid weak PHP cipher algorithms | Critiq Docs

#Metadata

Rule ID: php.security.weak-cipher
Severity: high
Confidence: 0.9
Languages: php
Presets: security, strict
Stability: stable
Applies to: block
Tags: crypto, php, rules-catalog, security

#Why it matters

Weak ciphers and modes are vulnerable to practical cryptanalysis and do not meet modern confidentiality standards.

#Remediation

Use modern authenticated encryption (for example AES-GCM) via sodium or OpenSSL with vetted algorithms and modes.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/php/php.security.weak-cipher.rule.yaml.

Back to directory Open rule in repository