Remove unnecessary attributes and add new names to avoid false positives from weak scans.

app/views/announcements/index.html.erb

@@ -54,7 +54,7 @@
     %>
     <div class="search_widget" style="display: flex;flex-wrap: wrap;font-size: 1.1em;">
       <%= select_tag('category',options_for_select(all_cat.concat(cats.map{|v| [v.title,v.id.to_s]}),:selected => @params['category'].to_s),:id=>"category_select_box") %>
-      <input class="search_box" type="text" name="keywords" value="<%= @params['keywords'].to_s.gsub(/\"/,'') %>" placeholder="<%= t('announcement.keywords') %>">
+      <input class="search_box" type="text" name="q_text" value="<%= @params['q_text'].to_s.gsub(/\"/,'') %>" placeholder="<%= t('announcement.keywords') %>">
       <div style="display: flex;flex-wrap: wrap;">
         <div class="default_picker">
           <input class="search_box" type="text" name="stime" value="<%= @params['stime'].to_s.gsub(/\"/,'') %>" placeholder="<%= t('announcement.stime') %>" data-format="yyyy/mm/dd">
@@ -64,7 +64,6 @@
           <input class="search_box" type="text" name="etime" value="<%= @params['etime'].to_s.gsub(/\"/,'') %>" placeholder="<%= t('announcement.etime') %>" data-format="yyyy/mm/dd">
         </div>
       </div>
-      <input type="hidden" name="authenticity_token" value="<%= form_authenticity_token %>">
       <input class="search_box" type="submit" value="<%= t('announcement.search') %>">
     </div>
   </form>