commit 9123b797553b23a2598c6b7284c71fe37141fe1d
author Mike Miller <mmiller@apache.org> Thu Sep 06 10:49:42 2018 -0400
committer GitHub <noreply@github.com> Thu Sep 06 10:49:42 2018 -0400
tree 42845d17819ebd8094ea4191225168b2efff573d
parent 4d2ca4d53069761d61c91da3af2ea8ee45940a73

Add sec-bugs plugin. Closes #618 (#628)

* Created build profile for sec-bugs
* Replaced Math.Random with SecureRandom
* Sanitize user input in log messages to prevent potential CRLF injection
* Use SHA-256 instead of MD5 or SHA-1
* Remove unused method in CryptoUtils
* Replace vulnerable regex in Monitor param validation