From e01bd61df0e5267999b53b2fde0f6576fc790b5a Mon Sep 17 00:00:00 2001 From: Joe Testa Date: Sat, 13 Jun 2026 10:54:54 -0400 Subject: [PATCH] Added usedforsecurity=False to hashlib.md5() call to suppress security scanner warning. --- src/ssh_audit/fingerprint.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/ssh_audit/fingerprint.py b/src/ssh_audit/fingerprint.py index a9d2caf..825473b 100644 --- a/src/ssh_audit/fingerprint.py +++ b/src/ssh_audit/fingerprint.py @@ -1,7 +1,7 @@ """ The MIT License (MIT) - Copyright (C) 2017-2021 Joe Testa (jtesta@positronsecurity.com) + Copyright (C) 2017-2026 Joe Testa (jtesta@positronsecurity.com) Copyright (C) 2017 Andris Raugulis (moo@arthepsy.eu) Permission is hereby granted, free of charge, to any person obtaining a copy @@ -32,7 +32,7 @@ class Fingerprint: @property def md5(self) -> str: - h = hashlib.md5(self.__fpd).hexdigest() + h = hashlib.md5(self.__fpd, usedforsecurity=False).hexdigest() r = ':'.join(h[i:i + 2] for i in range(0, len(h), 2)) return 'MD5:{}'.format(r)