Class | Brakeman::CheckForgerySetting |
In: |
lib/brakeman/checks/check_forgery_setting.rb
|
Parent: | Brakeman::BaseCheck |
Checks that protect_from_forgery is set in the ApplicationController.
Also warns for CSRF weakness in certain versions of Rails: groups.google.com/group/rubyonrails-security/browse_thread/thread/2d95a3cc23e03665