The existing Cross-Site Request Forgery (CSRF) protections in place in OpenShift do not do not properly protect GET requests, allowing for the creation of WebSockets via CSRF.