generic-remediation-reports.predictable-seed.report.json Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of codemodder-base Show documentation
Show all versions of codemodder-base Show documentation
Base framework for writing codemods in Java
{
"summary" : "Strengthened cipher seed with more unpredictable value",
"change" : "Added a better seed to the pseudorandom number generation to make numbers in successive runs more random",
"reviewGuidanceJustification" : "There should be no difference to the code what random numbers are generated. If there is, this change will surface that issue. This case could indicate a serious security weakness.",
"references" : [
"https://wiki.sei.cmu.edu/confluence/display/c/MSC32-C.+Properly+seed+pseudorandom+number+generators",
"https://wiki.sei.cmu.edu/confluence/display/cplusplus/MSC51-CPP.+Ensure+your+random+number+generator+is+properly+seeded",
"https://cwe.mitre.org/data/definitions/337.html",
"https://en.wikipedia.org/wiki/Random_seed"
]
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy