# File lib/brakeman/checks/check_weak_hash.rb, line 59 def process_hmac_result result return unless original? result call = result[:call] message = msg("Weak hashing algorithm used in HMAC") case call.third_arg.last when :MD5 message << ": " << msg_lit("MD5") when :SHA1 message << ": " << msg_lit("SHA1") end warn :result => result, :warning_type => "Weak Hash", :warning_code => :weak_hash_hmac, :message => message, :confidence => :medium end