hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 11:15:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

rewrite help

Browse Source
This commit is contained in:
toufik-airane
2020-06-22 20:06:17 +02:00
parent d65b7be32b
commit d9ecb7d762
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
javascript/ql/src/experimental/Security/CWE-347/JWTMissingSecretOrPublicKeyVerification.help
View File

@@ -10,7 +10,7 @@ to critical security issues like privilege escalation.</p>
</overview>
<recommendation>
<p>Use a secret or a key to decode JWT payloads when calling the <code>verify()</code> function.</p>
<p>Call to <code>verify()</code> functions should use a cryptographic secret or key to decode JWT payloads</p>
</recommendation>