Audit required: RC4 cipher algorithm is cryptographically broken GO-S1024
Security
Major
a02
a06
cwe-327
sans top 25
owasp top 10
RC4 is cryptographically broken and should not be used for secure applications. It is recommended to use an alternate algorithm instead.
Bad practice
c, _ := rc4.NewCipher(key)
dst := make([]byte, len(key))
c.XORKeyStream(dst, src)