I've added a Secure- prefix for cookies to enhance security by ensuring that cookies are only sent over HTTPS connections. It's an additional layer of protection that might be easily used.
Rationale
This change is necessary to improve the security of cookie handling by ensuring cookies are only transmitted over secure HTTPS connections. This mitigates the risk of cookie theft and session hijacking.
Description
I've added a
Secure-
prefix for cookies to enhance security by ensuring that cookies are only sent over HTTPS connections. It's an additional layer of protection that might be easily used.Rationale
This change is necessary to improve the security of cookie handling by ensuring cookies are only transmitted over secure HTTPS connections. This mitigates the risk of cookie theft and session hijacking.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#cookie_prefixes