[Owasp-csrfguard] Greetings

eric sheridan eric.sheridan at owasp.org
Sun Dec 12 21:37:40 EST 2010


esheri is me - Eric Sheridan, project lead. Just because the defects are not
marked fixed doesn't mean they're still applicable. On the contrary, all the
'defects' listed at google should be addressed by now. I just have not been
doing a good job of closing them. I'll be updating the defects at google
right after this email. I would encourage you to not fork as you'll loose
out on the constant security updates that I am applying. I am pushing a new
ALPHA release hopefully later this week that you can use for review/testing.
If you have any patches, etc., please send them my way and I will integrate
them. If you see a defect incorrectly marked, please let me know the
specific number and I will address.


On Sun, Dec 12, 2010 at 4:47 AM, Abdul-Aziz Al-Malki <almalki at isd.net.sa>wrote:

> Hi guys,
> This is my first message to this list.
> I am trying to apply owasp-csrfguard to a production system, but after a
> quick PoC, it have noticed few bugs. I raised 2 defects in project website.
> esheri fixed 1 of them(the defect status is still NEW) but the other is
> still there. The problem is that there is a total of 10 defects and its
> statuses wasn't changed, which means these defects are still applicable.
> I thought about taking a snapshot of the code and maintain it in my side,
> but I am willing to contribute my fixes and changes back to the project. I
> noticed Mr. esheri is actively rewriting the code and fixing it, but we need
> to update the status of these defects so we can know the whole status of the
> project.. I hope to hear back from you soon.
> Thanks...**
> _______________________________________________
> Owasp-csrfguard mailing list
> Owasp-csrfguard at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-csrfguard
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-csrfguard/attachments/20101212/fc96b62d/attachment.html 

More information about the Owasp-csrfguard mailing list