Closed techsin closed 5 years ago
I don't see any issues regarding lack of support for prevention against BREACH attack. Is it supported?
https://github.com/rails/rails/pull/16570
An implementation that supposedly is a work around that.
BREACH is already mitigated in this module https://github.com/pillarjs/understanding-csrf/blob/master/README.md#breach-attack
Thanks
I don't see any issues regarding lack of support for prevention against BREACH attack. Is it supported?
https://github.com/rails/rails/pull/16570
An implementation that supposedly is a work around that.