5:27 Play Subscribe with or Intro song by Falseta

Episode #252 - March 6th, 2012

0d2bf6fbf141a1995560fa9273992ff0.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Nathaniel Bibler 2df14bd29ca441a9d4656f0abae2e0ab.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Gregg Pollack

We start out this episode talking about the Github Rails drama from this weekend along with Yehuda's suggestion to fix the issue, MethodProfiler, Ariane, SimpleForm 2.0, and Versionist.

Subscribe to our mailing list!

This episode is sponsored by Top Ruby Jobs. Everyone deserves to love their job (and it's probably in Ruby).

  • Top Ruby Jobs
  • Github Issue
  • Rails Response
  • Yehuda's Suggestion
  • MethodProfiler
  • Ariane
  • SimpleForm 2.0
  • Versionist
  • Ruby5

Yehuda’s Mass Assignment Approach Jump to Story

Also in response to this Yehuda Katz gave two suggestions on how to combat this issue. One was to create a signed token when using form_for that contains the fields present in the form. The second layer solution was to move method whitelisting into the controllers, so you could set attribute access based on the context.

September 16th, 2014

This episode covers an open source admin framework, the Rails protect from forgery method, fast testing, and a new reactive framework.

September 12th, 2014

@rubystrings, Global Day of Coderetreat 2014, Asynchronous Integration Tests With Capybara, nice rake tasks, and module prepend in rails 5

September 9th, 2014

This episode covers RSpec 3.1, unifying multiple analytics services with Rack::Tracker, new features in Rails 4.2, the Fearless Rails Deployment book, a spike for thoughts about Rack 2.0 with The_Metal and RubyConf Portugal.

September 5th, 2014

Reading Rails talks TimeWithZone, descriptive_statistics, new gems in Rails 4.2, Paperdragon, and using Ruby's English operators all in this episode of the Ruby5 podcast!