id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
26165	Add an FAQ that explains why Django's CSRF isn't vulnerable	Tim Graham	Vivek Unnikrishnan	"It's a common invalid report to the security mailing list.

There are some public threads like https://groups.google.com/d/topic/django-developers/zpqGUyAdjH8/discussion but it would nice to be have a canonical answer to point to."	Cleanup/optimization	closed	Documentation	dev	Normal	fixed		Florian Apolloner zachborboa@…	Accepted	1	0	0	0	0	0