Authentication route is not protected by ASM's ATO Detection

Description

This rule identifies when an authentication route is not protected from ATO attacks by ASM’s ATO Detection.

Rationale

No protection against ATO.

Remediation

  • Add instrumentation (using SDK or WAF)