rspec/rules/S3330/recommended.adoc

== Recommended Secure Coding Practices

* By default the ``++HttpOnly++`` flag should be set to _true_ for most of the cookies and it's mandatory for session / sensitive-security cookies.
Add rules 3000-3999 2020-06-30 12:48:39 +02:00			`== Recommended Secure Coding Practices`

make in-line code blocks verbatim 2021-01-27 13:42:22 +01:00			* By default the ``++HttpOnly++`` flag should be set to _true_ for most of the cookies and it's mandatory for session / sensitive-security cookies.