All Downloads are FREE. Search and download functionalities are using the official Maven repository.

generic-remediation-reports.missing-secure-flag.report.json Maven / Gradle / Ivy

There is a newer version: 0.97.9
Show newest version
{
  "summary" : "Added secure flag to HTTP cookies",
  "change": "Added a call to `setSecure()` to make sure the cookie is only transferred over HTTPS traffic",
  "reviewGuidanceIJustification" : "This code change may cause issues with the application if any of the places this code runs (in CI, pre-production or in production) are running over plaintext HTTP.",
  "references" : [
    "https://owasp.org/www-community/controls/SecureCookieAttribute",
    "https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies",
    "https://cwe.mitre.org/data/definitions/614.html"
  ]
}




© 2015 - 2024 Weber Informatics LLC | Privacy Policy