ajinabraham.njsscan.good.good_anti_csrf.anti_csrf_control
ajinabraham
Author
unknown
Download Count*
License
This application has anti CSRF protection which prevents cross site request forgery attacks.
Run Locally
Run in CI
Defintion
rules:
- id: anti_csrf_control
patterns:
- pattern-inside: |
$CSRUF = require('csurf')
...
- pattern-either:
- pattern: $X = csrf(...)
- pattern: $X = csurf(...)
- pattern: $APP.use(csrf(...))
- pattern: $APP.use(csurf(...))
message: This application has anti CSRF protection which prevents cross site
request forgery attacks.
languages:
- javascript
severity: INFO
metadata:
license: LGPL-3.0-or-later
Short Link: https://sg.run/BDJ2