Episode Details

This story was originally published on HackerNoon at: https://hackernoon.com/gos-cryptography-packages-were-audited-the-results.
The audit produced a single low-severity finding, in the legacy and unsupported Go+BoringCrypto integration, and a handful of informational findings.
Check more stories related to programming at: https://hackernoon.com/c/programming. You can also check exclusive content about #go, #golang, #go-cryptography-security, #go-security-audit, #go-cryptography-packages, #go-audit, #timing-side-channels, #hackernoon-top-story, and more.

This story was written by: @Go. Learn more about this writer by checking @Go's about page, and for more stories, please visit hackernoon.com.

Go ships with a full suite of cryptography packages in the standard library to help developers build secure applications. Google recently contracted the independent security firm [Trail of Bits] to complete an audit of the core set of packages. The audit produced a single low-severity finding, in the legacy and unsupported [Go+BoringCrypto integration], and a handful of informational findings.