Could someone suggest on below risk raised by checkMarx tool for ASp.NET Core WebAPI, as application don't send or store any cookies. " Startup.cs application configuration file, at line 21, does not define sensitive application cookies with the "secure" flag, which could cause the client to send those cookies in plaintext over an insecure network communication (HTTP). This may lead to a Session Hijacking attack."
var
This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)