Critiq Docs
Get started
security.secrets

Avoid weak cipher algorithms and modes

Cryptographic ciphers should use modern authenticated modes and approved algorithms.

#Metadata

Rule ID
ts.security.weak-cipher-or-mode
Severity
high
Confidence
0.9
Languages
javascript, typescript
Presets
recommended, security, strict
Stability
stable
Applies to
block
Tags
cipher, crypto, rules-catalog, security

#Why it matters

Weak modes such as ECB and legacy ciphers such as DES or RC4 do not provide adequate confidentiality.

#Remediation

Use modern authenticated encryption such as AES-GCM with approved key sizes and IV handling.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/typescript/ts.security.weak-cipher-or-mode.rule.yaml.

Back to registryOpen rule in repository