Network Rules¶
This section details rules related to insecure network communication practices.
- CSP-D401: Insecure Requests (verify=False)
- CSP-D402: Server-Side Request Forgery (SSRF)
- CSP-D403: Debug Mode in Production
- CSP-D404: Hardcoded Binding to 0.0.0.0
- CSP-D405: Requests Without Timeout
- CSP-D406: Insecure FTP
- CSP-D407: HTTPSConnection Without Context
- CSP-D408: Unverified SSL Context
- CSP-D409: Insecure Telnet
- CSP-D410: Insecure URL Opening
- CSP-D411:
ssl.wrap_socketUsage