Sobelow.Config.CSWH (Sobelow v0.11.1) View Source

Cross-Site Websocket Hijacking

Websocket connections are not bound by the same-origin policy. Connections that do not validate the origin may leak information to an attacker.

More information can be found here:

Cross-Site Websocket Hijacking checks can be disabled with the following command:

$ mix sobelow -i Config.CSWH

Link to this section Summary

Link to this section Functions