copper-tone-tech/web-hosts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
web-hosts/domains/coppertone.tech/audit-reports/security-audit/cryptography-20251123-124317.txt
Derek Williams c7d6786039 Add full web-hosts state
2025-12-26 13:38:04 +01:00

47 lines
6.8 KiB
Plaintext
Raw Permalink Blame History

# Cryptography Audit - 20251123-124317
== Random Number Generation ==
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:2826: rand.Read(b)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1474: if _, err := rand.Read(tokenBytes); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1562: if _, err := rand.Read(tokenBytes); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/ipfs-service/main.go:98: priv, _, err := crypto.GenerateKeyPairWithReader(crypto.Ed25519, -1, rand.Reader)
== Cryptographically Secure Random ==
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:5: "crypto/rand"
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:5: "crypto/rand"
/home/administrator/projects/coppertone.tech/backend/functions/ipfs-service/main.go:5: "crypto/rand"
== Encryption Usage ==
None found
== TLS/SSL Configuration ==
/home/administrator/projects/coppertone.tech/frontend/node_modules/wait-on/.github/workflows/node.js.yml:2:# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-nodejs
/home/administrator/projects/coppertone.tech/frontend/node_modules/wait-on/.github/workflows/node.js.yml:20: # See supported Node.js release schedule at https://nodejs.org/en/about/releases/
/home/administrator/projects/coppertone.tech/frontend/node_modules/path-browserify/.travis.yml:14: # Old npm certs are untrusted https://github.com/npm/npm/issues/20191
/home/administrator/projects/coppertone.tech/frontend/node_modules/path-browserify/.travis.yml:15: - 'if [ "${TRAVIS_NODE_VERSION}" = "0.6" ] || [ "${TRAVIS_NODE_VERSION}" = "0.8" ]; then export NPM_CONFIG_STRICT_SSL=false; fi'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/extend@3.0.2/node_modules/extend/.travis.yml:19: - 'case "${TRAVIS_NODE_VERSION}" in 0.*) export NPM_CONFIG_STRICT_SSL=false ;; esac'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/wait-on@9.0.3_debug@4.4.3/node_modules/wait-on/.github/workflows/node.js.yml:2:# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-nodejs
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/wait-on@9.0.3_debug@4.4.3/node_modules/wait-on/.github/workflows/node.js.yml:20: # See supported Node.js release schedule at https://nodejs.org/en/about/releases/
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/chromium-edge-launcher@0.2.0/node_modules/chromium-edge-launcher/.github/workflows/ci.yml:13: # awaiting support for 'latest'/'lts'. https://github.com/actions/setup-node/issues/26
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/path-browserify@1.0.1/node_modules/path-browserify/.travis.yml:14: # Old npm certs are untrusted https://github.com/npm/npm/issues/20191
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/path-browserify@1.0.1/node_modules/path-browserify/.travis.yml:15: - 'if [ "${TRAVIS_NODE_VERSION}" = "0.6" ] || [ "${TRAVIS_NODE_VERSION}" = "0.8" ]; then export NPM_CONFIG_STRICT_SSL=false; fi'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/iconv-lite@0.6.3/node_modules/iconv-lite/.github/dependabot.yml:2:# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/@vue+tsconfig@0.8.1_typescript@5.9.3_vue@3.5.24_typescript@5.9.3_/node_modules/@vue/tsconfig/.github/workflows/publish.yml:21: registry-url: 'https://registry.npmjs.org'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/babel-preset-current-node-syntax@1.2.0_@babel+core@7.28.5/node_modules/babel-preset-current-node-syntax/.github/workflows/nodejs.yml:2:# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/sanitize-filename@1.6.3/node_modules/sanitize-filename/.travis.yml:51: # https://github.com/airtap/airtap/blob/00cfae3f38b59f5ff4001cb5e131964e72ab6f24/bin/airtap.js#L6
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/npm-run-all2@8.0.4/node_modules/npm-run-all2/.github/workflows/release.yml:30: registry-url: 'https://registry.npmjs.org'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.pnpm/chrome-launcher@0.15.2/node_modules/chrome-launcher/.github/workflows/lh-smoke.yml:31: - run: yarn add --frozen-lockfile --network-timeout 1000000 -D https://github.com/GoogleChrome/lighthouse.git#main
/home/administrator/projects/coppertone.tech/frontend/node_modules/.ignored/npm-run-all2/.github/workflows/release.yml:30: registry-url: 'https://registry.npmjs.org'
/home/administrator/projects/coppertone.tech/frontend/node_modules/.ignored/@vue/tsconfig/.github/workflows/publish.yml:21: registry-url: 'https://registry.npmjs.org'
/home/administrator/projects/coppertone.tech/frontend/node_modules/iconv-lite/.github/dependabot.yml:2:# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
/home/administrator/projects/coppertone.tech/frontend/node_modules/extend/.travis.yml:19: - 'case "${TRAVIS_NODE_VERSION}" in 0.*) export NPM_CONFIG_STRICT_SSL=false ;; esac'
/home/administrator/projects/coppertone.tech/backend/pkg/ipfs/client.go:112: gateway = "https://ipfs.io"
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:172: dbSSLMode := strings.TrimSpace(os.Getenv("DB_SSL_MODE"))
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:179: if dbSSLMode == "" {
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:180: dbSSLMode = "require"
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:189: connStr := fmt.Sprintf("host=%s user=%s password=%s dbname=%s sslmode=%s", dbHost, dbUser, dbPassword, dbName, dbSSLMode)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:213: log.Printf("Connected to database (SSL mode: %s, schema: %s, max_conns: 25)", dbSSLMode, schemaInfo)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:391: sslMode := strings.TrimSpace(os.Getenv("DB_SSL_MODE"))
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:398: // Secure default: require TLS for production
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:399: if sslMode == "" {
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:400: sslMode = "require"
Reference in New Issue View Git Blame Copy Permalink