Skip to content

New Published Rules - innopolis.flask-insecure-set_cookie#3114

Open
semgrep-dev-pr-bot[bot] wants to merge 2 commits intodevelopfrom
semgrep-live-ARG2
Open

New Published Rules - innopolis.flask-insecure-set_cookie#3114
semgrep-dev-pr-bot[bot] wants to merge 2 commits intodevelopfrom
semgrep-live-ARG2

Conversation

@semgrep-dev-pr-bot
Copy link
Copy Markdown
Contributor

@semgrep-dev-pr-bot semgrep-dev-pr-bot Bot commented Sep 16, 2023

Wahoo! New published rules with innopolis.flask-insecure-set_cookie from @Lnsfna.

See semgrep.dev/s/ARG2 for more details.

Thanks for your contribution! ❤️

@kurt-r2c
Copy link
Copy Markdown
Contributor

kurt-r2c commented Sep 18, 2023

There is an existing audit rule for Flask cookies - https://github.com/returntocorp/semgrep-rules/blob/2d07ca555511b58e436f52dd0f3b724a903947fb/python/flask/security/audit/secure-set-cookie.yaml.

Would you consider improving this rule instead?

Furthermore - this PR is identical in content to #3115 - consider collaborating with this user on an updated rules.

@kurt-r2c kurt-r2c mentioned this pull request Sep 18, 2023
Closed
@CLAassistant
Copy link
Copy Markdown

CLAassistant commented Nov 9, 2023
edited
Loading

CLA assistant check
All committers have signed the CLA.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kurt-r2c @CLAassistant @Lnsfna