ishangsf/rspec - rspec - BuBaQ

ishangsf/rspec

1 line

242 B

Plaintext

Raw Permalink Normal View History

Modify rule S2647: Update to LaYC format (APPSEC-970) (#2917) ## Review A dedicated reviewer checked the rule description successfully for: - [ ] logical errors and incorrect information - [ ] information gaps and missing content - [ ] text style and tone - [ ] PR summary and labels follow [the guidelines](https://github.com/SonarSource/rspec/#to-modify-an-existing-rule)

2023-09-05 15:46:16 +02:00

Basic authentication is a vulnerable method of user authentication that should be avoided. It functions by transmitting a Base64 encoded username and password. As Base64 is easy to recognize and reverse, sensitive data may be leaked this way.