I am currently having trouble with a twitter-bootstrap view on my heroku app. I think that <meta name="viewport" content="width=device-width, initial-scale=1.0"> will make the mobile design of my app responsive. Any suggestions on this? Does this show any possible security issues? I am concerned after reading this Stack Overflow thread.
That meta tag is fine and has nothing to do with CSRF which is mentioned in the linked post. Your meta tag is simply dictating the scale of the website when displayed.