Rails-Javascript-Authenticity-Tokens is a project mainly written in Ruby, it's free.
Use Javascript to insert authenticity tokens instead of letting Rails do it
This changes how Rails adds in authenticity tokens to forms. Using Javascript to add the input field makes it a bit harder for script kiddies to scrape the page and submit the forms.