Reviewed-on: #6 Co-authored-by: jake <jake.young.dev@gmail.com> Co-committed-by: jake <jake.young.dev@gmail.com>
This commit is contained in:
@@ -21,7 +21,10 @@ func EncryptPassword(b []byte) ([]byte, error) {
|
||||
return nil, err
|
||||
}
|
||||
|
||||
ct := aesg.Seal(nil, []byte(nonce), []byte(b), nil)
|
||||
//adding #nosec trigger here since gosec interprets this as a hardcoded nonce value. The nonce is calculated using crypto/rand when the
|
||||
//config command is ran and is pulled from memory when used any times after, for now we must prevent the scan from catching here until gosec
|
||||
//is updated to account for this properly
|
||||
ct := aesg.Seal(nil, []byte(nonce), []byte(b), nil) // #nosec
|
||||
return ct, nil
|
||||
}
|
||||
|
||||
|
||||
Reference in New Issue
Block a user