mirror of
https://github.com/github/codeql.git
synced 2026-04-26 17:25:19 +02:00
6d6f8ba512
Generate an alert for every controller class that doesn't have or inherity a `protect_from_forgery` setting.
3 lines
321 B
Plaintext
3 lines
321 B
Plaintext
| railsapp/app/controllers/alternative_root_controller.rb:1:1:3:3 | AlternativeRootController | Potential CSRF vulnerability due to forgery protection not being enabled. |
|
|
| railsapp/app/controllers/tags_controller.rb:1:1:2:3 | TagsController | Potential CSRF vulnerability due to forgery protection not being enabled. |
|