github
diff --git a/‎java/ql/lib/semmle/code/java/security/Encryption.qll‎
Lines changed: 1 addition & 4 deletions b/‎java/ql/lib/semmle/code/java/security/Encryption.qll‎
Lines changed: 1 addition & 4 deletions
diff --git a/‎java/ql/lib/semmle/code/java/security/InsufficientKeySizeQuery_BeforeAddingTaintFlowBackForAsymmetric.qll‎
Lines changed: 0 additions & 264 deletions b/‎java/ql/lib/semmle/code/java/security/InsufficientKeySizeQuery_BeforeAddingTaintFlowBackForAsymmetric.qll‎
Lines changed: 0 additions & 264 deletions
@@ -249,10 +249,7 @@ string getASecureAlgorithmName() {
   result =
     [
       "RSA", "SHA256", "SHA512", "CCM", "GCM", "AES(?![^a-zA-Z](ECB|CBC/PKCS[57]Padding))",
-      "Blowfish", "ECIES" // ! Blowfish not actually secure based on https://rules.sonarsource.com/java/type/Vulnerability/RSPEC-4426 ??
-      // ! hmm, other sources imply that it is secure...
-      // ! also no DH here, etc.?
-      // ! also is ECB matched with AES?
+      "Blowfish", "ECIES"
     ]
 }
Original file line number	Diff line number	Diff line change
`@@ -249,10 +249,7 @@ string getASecureAlgorithmName() {`
`249`	`249`	`result =`
`250`	`250`	`[`
`251`	`251`	`"RSA", "SHA256", "SHA512", "CCM", "GCM", "AES(?![^a-zA-Z](ECB\|CBC/PKCS[57]Padding))",`
`252`		`- "Blowfish", "ECIES" // ! Blowfish not actually secure based on https://rules.sonarsource.com/java/type/Vulnerability/RSPEC-4426 ??`
`253`		`- // ! hmm, other sources imply that it is secure...`
`254`		`- // ! also no DH here, etc.?`
`255`		`- // ! also is ECB matched with AES?`
	`252`	`+ "Blowfish", "ECIES"`
`256`	`253`	`]`
`257`	`254`	`}`
`258`	`255`