Skip to content

Commit 871c129

Browse files
BartyBoi1128myteron
BartyBoi1128
and
myteron
authored
Update docs/Secure-Coding-Guide-for-Python/CWE-693/CWE-330/README.md
Co-authored-by: myteron <[email protected]> Signed-off-by: BartyBoi1128 <[email protected]>
1 parent 0440cff commit 871c129

File tree

1 file changed

+2
-1
lines changed
  • docs/Secure-Coding-Guide-for-Python/CWE-693/CWE-330

1 file changed

+2
-1
lines changed

docs/Secure-Coding-Guide-for-Python/CWE-693/CWE-330/README.md

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,8 @@ print(f"Your insecure token is: {TOKEN}")
4545
> The `secrets` module `os.urandom()` is called by `"secrets.token_urlsafe()"` causing its cryptographic strength to depend on the operating system and its entropy sources.
4646
Pure randomness can not be produced in software alone [[cloudflare 2017]](https://blog.cloudflare.com/randomness-101-lavarand-in-production/).
4747

48-
The `compliant01.py` solution uses the secrets module to generate the random numbers. The secrets module provides access to the most secure source of randomness that the os provides through `os.urandom()`.
48+
The `compliant01.py` solution uses the `secrets` module to generate the random numbers. The `secrets` module provides access to the most secure source of randomness that an OS provides through `os.urandom()`.
49+
4950

5051
*[compliant01.py](compliant01.py):*
5152

0 commit comments

Comments
 (0)