Not all SSL protocols are created equal and some legacy ones like "SSL", have been proven to be insecure.
This rule raises an issue when an SSL context is created with an insecure protocol (ie: a protocol different from "TLSv1.2" or "DTLSv1.2").
$ctx = stream_context_create([
'ssl' => [
'crypto_method' =>
STREAM_CRYPTO_METHOD_TLSv1_1_CLIENT | // Noncompliant
STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT,
],
]);
$ctx = stream_context_create([
'ssl' => [
'crypto_method' => STREAM_CRYPTO_METHOD_SSLv3_CLIENT
],
]);