Set a minimum TLS protocol version in Rust TLS configs | Critiq Docs

#Metadata

Rule ID: rust.security.tls-missing-min-version
Severity: high
Confidence: 0.85
Languages: rust
Presets: security, strict
Stability: experimental
Applies to: block
Tags: cryptography, rules-catalog, rust, security, tls

#Why it matters

Without a minimum version, legacy SSL/TLS protocols may be negotiated, weakening transport security.

#Remediation

Set `min_protocol_version` (rustls) or `min_tls_version` (reqwest) to TLS 1.2 or newer.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/rust/rust.security.tls-missing-min-version.rule.yaml.

Back to directory Open rule in repository