id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
34990	Change external link for CSRF reference docs to OWASP	Tim Schilling	Tim Schilling	"The CSRF reference docs links to https://www.squarefree.com/securitytips/web-developers.html#CSRF

I propose it should link to https://owasp.org/www-community/attacks/csrf#overview

Open Worldwide Application Security Project (OWASP) is the standard for security related questions, we should be pushing developers to that resource. Beyond that, the examples on that page do a much better job of explaining a CSRF attack and how to protect against it."	Cleanup/optimization	closed	Documentation	dev	Normal	fixed	csrf, documentation, owasp		Accepted	1	0	0	0	0	0