• Home
• io.codemodder
• core-codemods
• 0.93.0
• source code
• report.json

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.codemodder.codemods.SpringAbsoluteCookieTimeoutCodemod.report.json Maven / Gradle / Ivy

{
  "summary" : "Reduced absolute session timeout",
  "change" : "Reduced absolute session timeout to a reasonable timeframe",
  "reviewGuidanceJustification" : "It is possible that this would cause a disruptive experience for users who expect to be able to remain logged in for longer periods of time.",
  "references" : ["https://cheatsheetseries.owasp.org/cheatsheets/Session_Management_Cheat_Sheet.html#absolute-timeout", "http://projects.webappsec.org/w/page/13246944/Insufficient%20Session%20Expiration", "https://cwe.mitre.org/data/definitions/613.html"]
}