Potential fix for code scanning alert no. 6: Creating biased random numbers from a cryptographically secure source

anyulled · github-advanced-security[bot] · web-flow · commit 12feb4939580 · 2025-03-18T15:31:00.000+01:00
Co-authored-by: Copilot Autofix powered by AI &lt;62310815+github-advanced-security[bot]@users.noreply.github.com&gt;
diff --git a/src/2023/Home/components/SpeakersCarousel/SpeakerSwiper.tsx b/src/2023/Home/components/SpeakersCarousel/SpeakerSwiper.tsx
@@ -46,9 +46,11 @@ export const shuffleArray = <T,>(array: T[]): T[] => {
   const shuffledArray = [...array]; // Create a copy to avoid modifying the original array
   for (let i = shuffledArray.length - 1; i > 0; i--) {
     let j;
+    const max = (i + 1) * (2 ** 32 / (i + 1));
     do {
-      j = window.crypto.getRandomValues(new Uint32Array(1))[0] % (i + 1);
-    } while (j >= (i + 1));
+      j = window.crypto.getRandomValues(new Uint32Array(1))[0];
+    } while (j >= max);
+    j = j % (i + 1);
     [shuffledArray[i], shuffledArray[j]] = [shuffledArray[j], shuffledArray[i]];
   }
   return shuffledArray;
