hyperscale-stack / security

91%

master: 92%

LAST BUILD ON BRANCH feature/refactoring

branch: feature/refactoring

CHANGE BRANCH

x

Reset

Sync Branches

• feature/refactoring
• dependabot/github_actions/actions/checkout-6
• dependabot/github_actions/softprops/action-gh-release-3
• dependabot/go_modules/github.com/redis/go-redis/v9-9.19.0
• dependabot/go_modules/github.com/rs/zerolog-1.35.0
• dependabot/go_modules/github.com/rs/zerolog-1.35.1
• dependabot/go_modules/golang.org/x/crypto-0.45.0
• dependabot/go_modules/golang.org/x/crypto-0.46.0
• dependabot/go_modules/golang.org/x/crypto-0.47.0
• dependabot/go_modules/golang.org/x/crypto-0.48.0
• dependabot/go_modules/golang.org/x/crypto-0.49.0
• dependabot/go_modules/golang.org/x/crypto-0.50.0
• dependabot/go_modules/golang.org/x/crypto-0.51.0
• dependabot/go_modules/golang.org/x/crypto-0.52.0
• dependabot/go_modules/google.golang.org/grpc-1.81.1
• feature/connectrpc
• feature/oauth2-server
• master

Build # 26216269020

Build Type

Pull #32

github

Committed by euskadi31

Commit Message

fix(session): annotate G124 on configurable cookie attributes

gosec G124 cannot prove the Secure/HttpOnly/SameSite attributes are safe
because they are populated from the Manager configuration. The defaults
are secure (Secure, HttpOnly, SameSiteLax); the framework intentionally
lets callers tune them. Mark both http.Cookie literals with a justified
nolint directive.

Pull Request Pull Request #32: Feature/refactoring

Coverage Stats

3733 of 4084 relevant lines covered (91.41%)

12.0 hits per line