From what I understand, HttpOnly cookies cannot be read by client js but they are passed by the browser with any subsequent requests. If an attacker is able to
swiftui-text
kubuntu
bitboard
known-hosts
building
imagemagick
network-scan
ansible-playbook
leader-election
fselector
recursive-templates
multithreading
pdist
ksp
snort
servicestack-text
dirent.h
sbt-docker-compose
supl
android-framelayout
erlang-ls
object-persistence
moqui
cancelanimationframe
smt
listselectionlistener
httr
billingclient
sapui5
azure-webhooks