Skip to content

Commit d9ecb7d

Browse files
toufik-airanetoufik-airane
committed
rewrite help
1 parent d65b7be commit d9ecb7d

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

javascript/ql/src/experimental/Security/CWE-347/JWTMissingSecretOrPublicKeyVerification.help

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,7 @@ to critical security issues like privilege escalation.</p>
1010
</overview>
1111

1212
<recommendation>
13-
<p>Use a secret or a key to decode JWT payloads when calling the <code>verify()</code> function.</p>
13+
<p>Call to <code>verify()</code> functions should use a cryptographic secret or key to decode JWT payloads</p>
1414

1515
</recommendation>
1616

0 commit comments

Comments
 (0)