Avoid weak key-generation strength | Critiq Docs

#Metadata

Rule ID: ts.security.weak-key-strength
Severity: high
Confidence: 0.9
Languages: javascript, typescript
Presets: recommended, security, strict
Stability: stable
Applies to: block
Tags: cryptography, key-management, rules-catalog, security

#Why it matters

Weak modulus or key lengths make brute-force and cryptanalytic attacks more practical, even when the API itself is correct.

#Remediation

Use at least 2048-bit RSA keys and at least 128-bit AES or HMAC keys unless a clearly documented compatibility boundary requires otherwise.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/typescript/ts.security.weak-key-strength.rule.yaml.

Back to registry Open rule in repository