Reject deprecated SSL/TLS protocol versions | Critiq Docs

#Metadata

Rule ID: rust.security.insecure-ssl-protocol
Severity: high
Confidence: 0.85
Languages: rust
Presets: security, strict
Stability: experimental
Applies to: block
Tags: cryptography, rules-catalog, rust, security, tls

#Why it matters

These protocol versions have known weaknesses and are deprecated for secure transport.

#Remediation

Require TLS 1.2 or TLS 1.3 and remove SSLv3, TLS 1.0, and TLS 1.1 from allowed protocol lists.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/rust/rust.security.insecure-ssl-protocol.rule.yaml.

Back to directory Open rule in repository