bouncy-gpg
bouncy-gpg copied to clipboard
neuhalje
Allow setting name and modification date for literal data packet; BC …
BC 1.77 and jdk8on:
- since BC jdk15on stopped with version 1.67 and there are still vulnerabilities, moved to jdk18on
- source and target compatibility is set to Java 8 anyway
- updated to latest version
New providers:
- in some cases, we need to set a name and/or modification date for a literal data packet in encrypted/signed file. This library is designed to work with stream, yet we can stream a file content...
- ... or, we can simulate file or need to set for whatever reason name of literal data
- this PR has two new functional interfaces to provide name and/or modification date
- default is to use current behavior (an empty string as a name
""and current datenew Date()as a modification date) - implemented in
Buildinterface
Checkmarx One – Scan Summary & Details – 174873e6-af58-45bb-8742-ffbedfa27297
New Issues
| Severity | Issue | Source File / Package | Checkmarx Insight |
|---|---|---|---|
 |
Improper_Resource_Shutdown_or_Release | /src/main/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/encrypting/PGPEncryptingStream.java: 147 | Attack Vector |
|
Improper_Resource_Shutdown_or_Release | /src/main/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/encrypting/PGPEncryptingStream.java: 249 | Attack Vector |
Fixed Issues
| Severity | Issue | Source File / Package |
|---|---|---|
|
Improper_Resource_Shutdown_or_Release | /src/main/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/encrypting/PGPEncryptingStream.java: 211 |
|
Improper_Resource_Shutdown_or_Release | /src/main/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/encrypting/PGPEncryptingStream.java: 111 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 733 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 732 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 731 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 730 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 729 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 728 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 727 |
|
TruffleHog_HighEntropy_Strings | /src/test/java/name/neuhalfen/projects/crypto/bouncycastle/openpgp/testtooling/ExampleMessages.java: 726 |
