mirror of
https://github.com/github/codeql.git
synced 2025-12-16 08:43:11 +01:00
278 B
278 B
lgtm,codescanning
- The query "Use of constant
statevalue in OAuth 2.0 URL" (go/constant-oauth2-state) has been promoted from experimental status. This checks for use of a constant state value in generating an OAuth2 redirect URL, which may open the way for a CSRF attack.