Class Brakeman::CheckForgerySetting
In: lib/brakeman/checks/check_forgery_setting.rb
Parent: Brakeman::BaseCheck

Checks that protect_from_forgery is set in the ApplicationController.

Also warns for CSRF weakness in certain versions of Rails: groups.google.com/group/rubyonrails-security/browse_thread/thread/2d95a3cc23e03665

Methods

Public Instance methods

[Validate]