oauth2: stop cross-host redirects to prevent bearer token leakage#804

Open

evilgensec wants to merge 1 commit into

golang:masterfrom

evilgensec:fix/cross-host-redirect-token-leakage

Commits on May 6, 2026

NewClient: stop cross-host redirects to prevent bearer token leakage
evilgensec
committed