Skip to content

Updated C# CSRF rule: exception for class level CSRF Attribute Scenario

Dinura Seneviratne requested to merge dseneviratne-ext/sast-rules:main into main

csharp/csrf/rule-Csrf.yml - Updated Rule to take into account the application possibly using

  • Modified the existing rule to scan at a class level if [AutoValidateAntiforgeryToken] is applied and prevent the triggering of the false positive.

Merge request reports