CodeSent Rules - Comprehensive API Security & Static Analysis

RouteRule AccessControl

Name	Scopes	Tags	Links
Critical
Bypassing AccessControl policy via True-Client-IP header	AccessControl	Data Validation	CWE-290
Medium
AccessControl allows all IPs	AccessControl	Data Validation	CWE-290
Condition has undefined variables	Step RouteRule Flow	Code Quality	CWE-570 CWE-571
Low
Overcomplicated or malformed condition	Step RouteRule Flow	Code Quality	CWE-570 CWE-571