Back to library list
org.scribe__scribe
Column Insecure: Icon 
indicates the version is insecure, otherwise 
Column CryptoMisuse: Icon indicates the version has cryptographic API misuse, otherwise
indicates the version is insecure, otherwise
Column CryptoMisuse: Icon
indicates the version has cryptographic API misuse, otherwise
| Version | Insecure | CryptoMisuse | Rule name | Method | Statement | Details |
|---|---|---|---|---|---|---|
| 1.0.6 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer112) | First parameter was not properly generated as prepared Key Material |
| 1.0.7 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer116) | First parameter was not properly generated as prepared Key Material |
| 1.0.8 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer111) | First parameter was not properly generated as prepared Key Material |
| 1.0.9 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer114) | First parameter was not properly generated as prepared Key Material |
| 1.1.0 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer129) | First parameter was not properly generated as prepared Key Material |
| 1.1.1 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer141) | First parameter was not properly generated as prepared Key Material |
| 1.1.2 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer142) | First parameter was not properly generated as prepared Key Material |
| 1.1.3 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer171) | First parameter was not properly generated as prepared Key Material |
| 1.2.0 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer179) | First parameter was not properly generated as prepared Key Material |
| 1.2.1 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer196) | First parameter was not properly generated as prepared Key Material |
| 1.2.2 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer196) | First parameter was not properly generated as prepared Key Material |
| 1.2.3 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer215) | First parameter was not properly generated as prepared Key Material |
| 1.3.0 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer254) | First parameter was not properly generated as prepared Key Material |
| 1.3.1 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer293) | First parameter was not properly generated as prepared Key Material |
| 1.3.2 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer311) | First parameter was not properly generated as prepared Key Material |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | r11 = staticinvoke <java.security.Signature: java.security.Signature getInstance(java.lang.String)>(varReplacer317) | First parameter (with value "SHA1withRSA") should be any of {NONEwithDSA, SHA1withDSA, SHA224withDSA, SHA256withDSA, SHA256withRSA, SHA256withECDSA} |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | virtualinvoke r11.<java.security.Signature: void initSign(java.security.PrivateKey)>($r4) | First parameter was not properly generated as generated Privkey |
| 1.3.3 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer328) | First parameter was not properly generated as prepared Key Material |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | r11 = staticinvoke <java.security.Signature: java.security.Signature getInstance(java.lang.String)>(varReplacer338) | First parameter (with value "SHA1withRSA") should be any of {NONEwithDSA, SHA1withDSA, SHA224withDSA, SHA256withDSA, SHA256withRSA, SHA256withECDSA} |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | virtualinvoke r11.<java.security.Signature: void initSign(java.security.PrivateKey)>($r4) | First parameter was not properly generated as generated Privkey |
| 1.3.5 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer346) | First parameter was not properly generated as prepared Key Material |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | r9 = staticinvoke <java.security.Signature: java.security.Signature getInstance(java.lang.String)>(varReplacer357) | First parameter (with value "SHA1withRSA") should be any of {NONEwithDSA, SHA1withDSA, SHA224withDSA, SHA256withDSA, SHA256withRSA, SHA256withECDSA} |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | virtualinvoke r9.<java.security.Signature: void initSign(java.security.PrivateKey)>($r4) | First parameter was not properly generated as generated Privkey |
| 1.3.6 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer192) | First parameter was not properly generated as prepared Key Material |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | r9 = staticinvoke <java.security.Signature: java.security.Signature getInstance(java.lang.String)>(varReplacer205) | First parameter (with value "SHA1withRSA") should be any of {NONEwithDSA, SHA1withDSA, SHA224withDSA, SHA256withDSA, SHA256withRSA, SHA256withECDSA} |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | virtualinvoke r9.<java.security.Signature: void initSign(java.security.PrivateKey)>($r4) | First parameter was not properly generated as generated Privkey |
| 1.3.7 |
|
|
SecretKeySpec | org.scribe.services.HMACSha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | specialinvoke $r6.<javax.crypto.spec.SecretKeySpec: void <init>(byte[],java.lang.String)>($r7, varReplacer194) | First parameter was not properly generated as prepared Key Material |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | r9 = staticinvoke <java.security.Signature: java.security.Signature getInstance(java.lang.String)>(varReplacer204) | First parameter (with value "SHA1withRSA") should be any of {NONEwithDSA, SHA1withDSA, SHA224withDSA, SHA256withDSA, SHA256withRSA, SHA256withECDSA} |
| - | - |
|
Signature | org.scribe.services.RSASha1SignatureService.getSignature(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;)Ljava/lang/String; | virtualinvoke r9.<java.security.Signature: void initSign(java.security.PrivateKey)>($r4) | First parameter was not properly generated as generated Privkey |