# sonarjs/cookie-no-httponly

📝 Creating cookies without the "HttpOnly" flag is security-sensitive.

💼 This rule is enabled in the ✅ `recommended` config.

<!-- end auto-generated rule header -->