hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-27 01:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

change-note edition

Browse Source 
Co-authored-by: Alex Ford <alexrford@users.noreply.github.com>
This commit is contained in:
Maiky
2023-10-15 10:25:58 +02:00
committed by GitHub
parent 97c20b181a
commit 17210c76a5
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
ruby/ql/src/change-notes/2023-09-16-jwt-security-query.md
View File

@@ -1,4 +1,5 @@
---
category: newQuery
---
* Added two new experimental query, `rb/jwt-empty-secret-or-algorithm`, to detect when application uses an empty secreat or weak algorithm. And `rb/jwt-missing-verification`, when the application does not verify the JWT payload.
* Added a new experimental query, `rb/jwt-empty-secret-or-algorithm`, to detect when application uses an empty secret or weak algorithm.
* Added a new experimental query, `rb/jwt-missing-verification`, to detect when the application does not verify a JWT payload.