Open ericwb opened 3 months ago
Is your feature request related to a problem? Please describe. Similar to the Java InsecureCookie rule (JAV006), Python could use the same.
Describe the solution you'd like Need to detect cases like the following:
from http.cookies import SimpleCookie cookie = SimpleCookie() cookie['sample'] = "sample_value" cookie['sample']['secure'] = 0
Should be fixed like so:
cookie['sample']['secure'] = True
Describe alternatives you've considered n/a
Additional context https://docs.python.org/3/library/http.cookies.html#http.cookies.SimpleCookie
Love this idea? Give it a 👍. We prioritize fulfilling features with the most 👍.
Is your feature request related to a problem? Please describe. Similar to the Java InsecureCookie rule (JAV006), Python could use the same.
Describe the solution you'd like Need to detect cases like the following:
Should be fixed like so:
Describe alternatives you've considered n/a
Additional context https://docs.python.org/3/library/http.cookies.html#http.cookies.SimpleCookie
Love this idea? Give it a 👍. We prioritize fulfilling features with the most 👍.