Avoid relaying request-derived sensitive data in outbound PHP HTTP calls | Critiq Docs

#Metadata

Rule ID: php.security.sensitive-data-egress
Severity: high
Confidence: 0.78
Languages: php
Presets: security, strict
Stability: experimental
Applies to: block
Tags: egress, php, privacy, rules-catalog, security

#Why it matters

Unchecked egress forwarding can leak tokens, credentials, or personal data to external systems.

#Remediation

Scrub secrets, restrict outbound destinations, and centralize external integrations behind audited request builders.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/php/php.security.sensitive-data-egress.rule.yaml.

Back to directory Open rule in repository