GHSA-r3jq-4r5c-j9hp: Taipy has a Session Cookie without Secure and HTTPOnly flags

August 27, 2024

Session cookie is without Secure and HTTPOnly flags.

References

github.com/Avaiga/taipy
github.com/Avaiga/taipy/blob/develop/frontend/taipy-gui/src/components/Taipy/Navigate.tsx
github.com/Avaiga/taipy/security/advisories/GHSA-r3jq-4r5c-j9hp
github.com/advisories/GHSA-r3jq-4r5c-j9hp

Code Behaviors & Features

Detect and mitigate GHSA-r3jq-4r5c-j9hp with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →