OWASP/www-project-csrfguard issues and pull requests

#312 - build(deps): bump org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.5.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago
Labels: dependencies

#311 - build(deps): bump org.owasp:dependency-check-maven from 10.0.4 to 11.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies

#310 - build(deps-dev): bump junit.version from 5.11.2 to 5.11.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies

#309 - build(deps): bump org.codehaus.mojo:exec-maven-plugin from 3.3.0 to 3.4.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies

#308 - ci: Snyk check improvement

Pull Request - State: closed - Opened by forgedhallpass about 1 month ago - 1 comment

#307 - build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.5.0 to 3.5.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies

#306 - build(deps-dev): bump junit.version from 5.11.0 to 5.11.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies

#305 - Fix none match multi domain validation

Pull Request - State: closed - Opened by dgriffon about 2 months ago

#304 - build(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.10.0 to 3.10.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies

#303 - build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.5 to 3.2.7

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies

#302 - build(deps): bump commons-io:commons-io from 2.16.1 to 2.17.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies

#301 - build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.5 to 3.2.6

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies

#300 - build(deps-dev): bump junit.version from 5.11.0 to 5.11.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies

#299 - The isValidUrl method in csrfguard.js uses an insecure string-matching technique

Issue - State: open - Opened by Shishir53 3 months ago
Labels: security, Severity: Low

#298 - build(deps): bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#297 - build(deps): bump org.apache.commons:commons-lang3 from 3.16.0 to 3.17.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#296 - build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.1 to 3.5.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#295 - build(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.8.0 to 3.10.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#294 - build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.1 to 3.4.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies

#293 - build(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.2 to 3.1.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#292 - build(deps): bump org.apache.commons:commons-lang3 from 3.14.0 to 3.16.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#291 - build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.4 to 3.2.5

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#290 - build(deps-dev): bump junit.version from 5.10.3 to 5.11.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#289 - build(deps): bump org.slf4j:slf4j-api from 2.0.13 to 2.0.16

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#288 - build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.3.0 to 3.3.1

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies

#287 - JSP with CSRF Guard form tag having an action with query parameters fails validation

Issue - State: closed - Opened by Frank-St 4 months ago - 2 comments

#286 - build(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.8.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies

#285 - build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 10.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies

#284 - build(deps): bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies

#283 - build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 10.0.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies

#282 - build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 10.0.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies

#281 - build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 10.0.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies

#280 - build(deps-dev): bump junit.version from 5.10.2 to 5.10.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies

#279 - build(deps): bump org.apache.maven.plugins:maven-jar-plugin from 3.4.1 to 3.4.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies

#278 - build(deps): bump org.apache.maven.plugins:maven-release-plugin from 3.0.1 to 3.1.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago - 1 comment
Labels: dependencies

#277 - tld file location

Pull Request - State: closed - Opened by rameshkt 5 months ago - 3 comments

#276 - Location of .tld file

Issue - State: closed - Opened by rameshkt 5 months ago - 3 comments

#275 - build(deps): bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.5 to 3.3.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies

#274 - build(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.3 to 3.7.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago - 1 comment
Labels: dependencies

#273 - build(deps): bump org.sonatype.plugins:nexus-staging-maven-plugin from 1.6.13 to 1.7.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies

#272 - Updated documentation - Open Issue

Pull Request - State: closed - Opened by swetak20 6 months ago - 5 comments

#271 - build(deps): bump com.google.code.gson:gson from 2.10.1 to 2.11.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies

#270 - build(deps): bump org.owasp:dependency-check-maven from 8.4.3 to 9.2.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago - 1 comment
Labels: dependencies

#269 - build(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.1 to 3.1.2

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#268 - build(deps): bump org.apache.maven.plugins:maven-jar-plugin from 3.4.0 to 3.4.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#267 - build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.3 to 3.2.4

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#266 - build(deps): bump org.apache.maven.plugins:maven-scm-plugin from 2.0.1 to 2.1.0

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#265 - build(deps): bump org.apache.maven.plugins:maven-jar-plugin from 3.3.0 to 3.4.0

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#264 - build(deps): bump org.slf4j:slf4j-api from 2.0.12 to 2.0.13

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#263 - build(deps): bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.2 to 3.2.3

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#262 - Master csrf token incorrectly returned as page token

Issue - State: open - Opened by forgedhallpass 8 months ago
Labels: bug, help wanted

#261 - Bump commons-io:commons-io from 2.15.1 to 2.16.1

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#260 - Bump org.apache.maven.plugins:maven-source-plugin from 3.3.0 to 3.3.1

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#259 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.1.0

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 2 comments
Labels: dependencies

#258 - Bump commons-io:commons-io from 2.15.1 to 2.16.0

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies

#256 - Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.0 to 3.2.2

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#255 - request through a proxyPass problem

Issue - State: closed - Opened by stefano-1973 8 months ago - 1 comment
Labels: bug

#254 - request through a proxyPass problem

Pull Request - State: closed - Opened by stefano-1973 8 months ago - 1 comment

#253 - Bump org.apache.maven.plugins:maven-gpg-plugin from 3.2.0 to 3.2.1

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago - 1 comment
Labels: dependencies

#252 - Bump org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#251 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.10

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies

#250 - Bump org.apache.maven.plugins:maven-gpg-plugin from 3.1.0 to 3.2.0

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies

#249 - Bump junit.version from 5.10.1 to 5.10.2

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies

#248 - Bump org.slf4j:slf4j-api from 2.0.11 to 2.0.12

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago
Labels: dependencies

#247 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.9

Pull Request - State: closed - Opened by dependabot[bot] 10 months ago - 1 comment
Labels: dependencies

#246 - Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.3 to 3.2.5

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies

#245 - Bump org.slf4j:slf4j-api from 2.0.9 to 2.0.11

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies

#244 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.8

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies

#242 - Bump org.slf4j:slf4j-api from 2.0.9 to 2.0.10

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies

#241 - Bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.1

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago
Labels: dependencies

#240 - Bump org.apache.maven.plugins:maven-compiler-plugin from 3.11.0 to 3.12.0

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies

#239 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.7

Pull Request - State: closed - Opened by dependabot[bot] 11 months ago - 1 comment
Labels: dependencies

#238 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.6

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#237 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.5

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#236 - Bump org.apache.maven.plugins:maven-surefire-plugin from 3.2.2 to 3.2.3

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago
Labels: dependencies

#235 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.4

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#233 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.3

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#232 - Bump org.apache.maven.plugins:maven-javadoc-plugin from 3.6.2 to 3.6.3

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago
Labels: dependencies

#231 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.2

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago - 1 comment
Labels: dependencies

#230 - Bump commons-io:commons-io from 2.15.0 to 2.15.1

Pull Request - State: closed - Opened by dependabot[bot] 12 months ago
Labels: dependencies

#229 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.1

Pull Request - State: closed - Opened by dependabot[bot] almost 1 year ago - 1 comment
Labels: dependencies

#228 - Bump org.owasp:dependency-check-maven from 8.4.3 to 9.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 year ago - 1 comment
Labels: dependencies