squid322
- Karma
- 48
- Created
- August 8, 2022 (3y ago)
- Submissions
- 0
-
_TL;DR_: Stytch, a Login SaaS Unicorn, has no CRSF-protection in their authentication API and other questionable security practices, coupled with a nonexistent security policy. First of all: Why am I posting this on…