Feedback on MD5 usage in Chef scripts

[akondasif]

Greetings,

I am a security researcher, who is looking for coding patterns that are indicative of security weaknesses in Chef scripts. In your repo I found instances of MD5 usage within Chef scripts. MD5 is breakable (http://merlot.usc.edu/csac-f06/papers/Wang05a.pdf). According to the Common Weakness Enumeration organization this is a security weakness
(CWE-327: Use of a Broken or Risky Cryptographic Algorithm https://cwe.mitre.org/data/definitions/327.html).

I am trying to find out if you agree with the findings. Any feedback is appreciated.

Source:

1. https://github.com/cookbooks/ic-graphite/blob/master/cookbooks/zabbix/recipes/database_mysql.rb