Play 1 security


Despite their functional differences, is Play 1 as secure as Play 2?

I am referring to all kinds of aspects concerning security, whether the way the session cookie is signed/represented or protection against web vulnerabilities (

Given Play! 1’s low activity, are and will security fixes continue being applied to Play 1 as they are to Play 2?

Thanks in advance.