6:47 Play Subscribe with or Intro song by Falseta

Episode #340 - January 29th, 2013

Ebc7d797dc097f8035a93e2f391aebb9.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Josh Van Cleef 2df14bd29ca441a9d4656f0abae2e0ab.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Gregg Pollack

Devise security, secure cookie security, JSON Parser security.. do you see a theme? Then there's Mutant, Von, Garelic, Dossier, Split, Inkwell, Social Stream, Faster Rails, and Rails resources.

Subscribe to our mailing list!

This episode is sponsored by Top Ruby Jobs. Everyone deserves to love their job (and it's probably in Ruby).

  • TopRubyJobs
  • Devise Security
  • Mutant
  • Von
  • Garelic
  • Dossier
  • Split
  • Cookie security
  • Inkwell
  • Social Stream 1.0
  • Faster Rails
  • Ruby Resources
  • Rails Security!
  • Ruby5

JSON Parser Vulnerability in Rails 3.0 & 2.3 Jump to Story

There is a vulnerability in the JSON code for Ruby on Rails which allows attackers to bypass authentication systems, inject arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on a Rails application.

July 25nd, 2014

Rails Rumble, Debug Anything and Speeding up Rails

July 22nd, 2014

Get your mind in the Gutter, agree that Programming is Not Math, be a RubyCritic, master Vim Plugins for Ruby, review 3 Ways to Create Classes in Ruby, and take a trip to RailsPacific.

July 18th, 2014

Take a peek into your app, think about accessibility, write polyglot web apps, learn Rails, say goodbye to 1.8.7 and 1.9.2 support

July 15th, 2014

In this episode we cover fun with iBeacons and PunchClock, visually starting a Rails app with Prelang, a Ruby Queue Pop method with Timeout, text translations from the command line with Termit and Diving into the Rails request handling.