HTHou opened a new pull request, #285: URL: https://github.com/apache/tsfile/pull/285
Fixes [https://github.com/apache/tsfile/security/code-scanning/10](https://github.com/apache/tsfile/security/code-scanning/10) To fix the problem, we need to replace the use of the MD5 algorithm with a stronger, modern cryptographic algorithm such as SHA-256. This change will ensure that the generated encryption key is more secure and less vulnerable to attacks. The specific changes involve updating the `MessageDigest.getInstance("MD5")` call to `MessageDigest.getInstance("SHA-256")` and ensuring that the rest of the code correctly handles the longer hash output produced by SHA-256. _Suggested fixes powered by Copilot Autofix. Review carefully before merging._ -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
