You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Apr 17, 2020. It is now read-only.
marcoow edited this page Aug 13, 2010
·
1 revision
This check reports views (and partials) that access the session hash. Accessing the session hash directly in views can result in security problems if the value is printed to the HTML output and in general is a bad habit because the controller, which is actually the part of the application that is responsible for dealing with session data, is circumvented.