ยซ Changelog History


gorilla/csrf v1.3 Release Notes

Release Date: 2016-02-24 // about 8 years ago

  • ๐Ÿ”’ v1.3 includes an important security fix for users of Go 1.2 (Debian <=7, Ubuntu <=14.10, etc.). This would cause token comparison to fail: https://groups.google.com/forum/#!topic/gorilla-web/G3aIFrm0LVI

    ๐Ÿ”„ CHANGELOG:

    • ๐Ÿ›  [bugfix] Token comparison could fail on versions of Go < 1.3.
    • โšก๏ธ [ci] Updated Travis to use matrix builds.