| - module: github.com/go-macaron/csrf |
| - fixed: 0.0.0-20180426211050-dadd1711a617 |
| vulnerable_at: 0.0.0-20170207230724-428b7c62d7d0 |
| - package: github.com/go-macaron/csrf |
| skip_fix: 'TODO: revisit this reason (cannot find module providing package github.com/Unknwon/com)' |
| summary: Insecure generation of cookies in github.com/go-macaron/csrf |
| The Options.Secure value is ignored, and cookies created by Generate never have |
| - fix: https://github.com/go-macaron/csrf/pull/7 |
| - fix: https://github.com/go-macaron/csrf/commit/dadd1711a617000b70e5e408a76531b73187031c |