ruby: CSRFProtectionDisabled.qhelp fixes

Co-authored-by: Harry Maclean <hmac@github.com>
2026-04-23 15:55:18 +02:00 · 2021-11-09 14:05:41 +00:00
parent 5f78bbbf52
commit c65d1d9a50
1 changed files with 2 additions and 2 deletions
--- a/ruby/ql/src/queries/security/cwe-352/CSRFProtectionDisabled.qhelp
+++ b/ruby/ql/src/queries/security/cwe-352/CSRFProtectionDisabled.qhelp
@@ -6,7 +6,7 @@
  <overview>
    <p>
      Cross-site request forgery (CSRF) is a type of vulnerability in which an
-      attacker  is able to force a user carry out an action that the user did
+      attacker is able to force a user carry out an action that the user did
      not intend. This may allow the attacker to perform actions on behalf of
      the targeted user.
    </p>
@@ -40,7 +40,7 @@

  <example>
    <p>
-      The following example shows a case where forgery protection is disabled by
+      The following example shows a case where CSRF protection is disabled by
      skipping token verification.
    </p>