SSLv3 is not secure and should be avoided

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Metadata

ID: go-security/ssl-v3-insecure

Language: Go

Severity: Warning

Category: Security

CWE: 327

Description

Do not use SSLv3 as it is now broken. See this issue for more information.

Non-Compliant Code Examples

func test() {
    	client := &http.Client{
		Transport: &http.Transport{
			TLSClientConfig: &tls.Config{
				MinVersion:         tls.VersionSSL30,
			},
		},
	}
}
https://static.datadoghq.com/static/images/logos/github_avatar.svg https://static.datadoghq.com/static/images/logos/vscode_avatar.svg jetbrains

Seamless integrations. Try Datadog Code Analysis