Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix our CSRF vulnerability #2129

Closed
1 task
BenSurgisonGDS opened this issue Apr 19, 2023 · 0 comments · Fixed by #2150
Closed
1 task

Fix our CSRF vulnerability #2129

BenSurgisonGDS opened this issue Apr 19, 2023 · 0 comments · Fixed by #2150
Assignees
@BenSurgisonGDS
Labels
🕔 Days A few unknowns, but we roughly know what’s involved.

Comments

@BenSurgisonGDS
Copy link
Contributor

BenSurgisonGDS commented Apr 19, 2023
edited by joelanman
Loading

See: https://dev-academy.com/csurf-vulnerability/

What

The package we currently use (csurf) has been deprecated due to a vulnerability. This needs to be replaced with the new accepted package csrf-csrf and implemented as described in the link.

Why

As a user, I want to be sure that the the kit is secure and safe to use

Who needs to work on this

Developer

Done when

Tasks
Beta Give feedback
@joelanman joelanman added the 🕔 Days A few unknowns, but we roughly know what’s involved. label Apr 20, 2023
@BenSurgisonGDS BenSurgisonGDS self-assigned this Apr 28, 2023
@BenSurgisonGDS BenSurgisonGDS linked a pull request May 2, 2023 that will close this issue
Prevent CSURF deprecated warning #2150
Merged
@BenSurgisonGDS BenSurgisonGDS mentioned this issue May 2, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@BenSurgisonGDS BenSurgisonGDS

Labels
🕔 Days A few unknowns, but we roughly know what’s involved.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Prevent CSURF deprecated warning alphagov/govuk-prototype-kit
2 participants
@joelanman @BenSurgisonGDS