5:42 Play Subscribe with or Intro song by Falseta

Episode #347 - February 22, 2013

2d87773eac5b0f45eaeffdeade7bd59d.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Jon Larkowski 241ab9ad3d170ef48f21d120a7684017.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Wes Gibbs

Another Exciting! SQL Injection! Decoding Cookies! Typehead! Media Queries! Incoming! Git rebase considered awesome! Ruby5!

Subscribe to our mailing list!

This episode is sponsored by New Relic. New Relic gives you performance monitoring, tracking, and reporting of your web applications.

  • New Relic
  • SQL Injection
  • Session Cookies
  • Typeahead.js
  • Sass Media
  • Incoming!
  • git rebase
  • Ruby5

Avoiding SQL Injection in Rails Jump to Story

Justin Collins blogged about Avoiding SQL Injection in Rails. In the post he explains an exploit via the exists? method. He also introduces http://rails-sqli.org, which is “a big list of what not to do when using ActiveRecord”.

See also:

August 1st, 2014

Learning to deploy with capistrano, memoization patterns, better APIs with mocaroni, middleman-presentation, and RubyConf 2014 all in this episode of the Ruby5!

July 29th, 2014

In this episode we cover the new Rails 4.2 HTML sanitizer, speeding up tests with ActiveMocker, logging validation errors with validation_auditor, Understanding Timeouts in CRuby, parsing JSON API with Roar and RubyConf Portugal.

July 25nd, 2014

Rails Rumble, Debug Anything and Speeding up Rails

July 22nd, 2014

Get your mind in the Gutter, agree that Programming is Not Math, be a RubyCritic, master Vim Plugins for Ruby, review 3 Ways to Create Classes in Ruby, and take a trip to RailsPacific.