Potential fix for code scanning alert no. 22: CSRF protection not enabled

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: dingsdax

spec/apps/yabeda-mini/app.rb

@@ -101,6 +101,8 @@ class Post < ActiveRecord::Base
 
 # Controllers
 class ApplicationController < ActionController::API
+  include ActionController::RequestForgeryProtection
+  protect_from_forgery with: :exception
   around_action :track_metrics
 
   private