New Rule: Require CORS (OWASP API8) #5
Labels
enhancement
New feature or request
good first issue
Good for newcomers
hacktoberfest
help wanted
Extra attention is needed
released
User Story Description
As an API Designer I should probably create a shared CORS header and apply it to all my responses because I always forget to add CORS, and it would be nice if Spectral could remind me to spec it, so that Prism Proxy will remind me to actually code it in. Otherwise this will definitely go online without CORS.
Acceptance Criteria
Access-Control-Allow-Origin
defined regardless of value.More information: https://apisecurity.io/encyclopedia/content/owasp/api7-security-misconfiguration
The text was updated successfully, but these errors were encountered: