[Owasp-csrfguard] Funding and or Resource Donation

Eric Sheridan eric.sheridan at owasp.org
Thu Apr 14 10:38:36 EDT 2011


List,

CSRFGuard adoption is steadily increasing and I'm finding myself falling
behind in terms of support. Many of you have identified valid bugs or
valid features that need addressing in CSRFGuard. Unfortunately, I'm
very low in "free time" these days and very much need support. Support
can be in the form of funding (http://ericsheridan.blogspot.com/, see
'Donate' button in lower right hand side) or in the form of code
contributions/support. If you are interested in donating to the project,
whether it be in time or in dollars, please let me know!

A couple of problems that CSRFGuard faces today:

- incomplete multi-part file upload support
- dynamic javascript needs more testing/evaluation in internet explorer
- javascript should inject tokens into dynamically created html
	-> i.e. hook calls such as 'createElement'
- general bugs that users have identified.

-Eric


More information about the Owasp-csrfguard mailing list