Skip to content

Commit d5d8c7b

Browse files
binarykbinaryk
committed
DOcs
1 parent 3f48664 commit d5d8c7b

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

README.md

+3
Original file line numberDiff line numberDiff line change
@@ -142,6 +142,9 @@ Please see [CONTRIBUTING](CONTRIBUTING.md) for details.
142142

143143
### Security
144144

145+
Since the Session Key and X-CSRF-TOKEN could be read by the JavaScript code, that means it's less secure than a usual
146+
http-only Cookie. Think of this as of the Bearer token. The security impact is exactly the same.
147+
145148
If you discover any security related issues, please email [email protected] instead of using the issue tracker.
146149

147150
## Credits

0 commit comments

Comments
 (0)