Python
Distributed
require-encryption
require-encryption
Initializing a security context for Dask (distributed
) without “require_encryption” keyword argument may silently fail to provide security.
Likelihood: MEDIUM
Confidence: MEDIUM
CWE:
- CWE-319: Cleartext Transmission of Sensitive Information
OWASP:
- A03:2017 - Sensitive Data Exposure
- A02:2021 - Cryptographic Failures