5:02 Play Subscribe with or Intro song by Falseta

Episode #354 - March 19, 2013

Eef7e6b6c1281a746a6a7b3db171cd0c.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Tony Winn 0d2bf6fbf141a1995560fa9273992ff0.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Nathaniel Bibler

Get some Inadequate Guids to Ruby and Rails Security, take a dip in the XPool, and turn Ruby into JavaScript on this episode of Ruby5.

Subscribe to our mailing list!

This episode is sponsored by Top Ruby Jobs. Everyone deserves to love their job (and it's probably in Ruby).

  • TopRubyJobs
  • Ruby-Doc Alerts
  • Inadequate Security
  • XPool
  • Ruby as JavaScript
  • Ruby5

The Inadequate Guide to Rails Security Jump to Story

This week Honeybadger released a blog post explaining all the dumb things we could be doing in our Rails apps that may compromise security. It covers a wide variety of security faux pas, including reusing passwords across users and applications to hidden SQL injection issues in ActiveRecord#sum.

August 27, 2014

In today's episode we cover the new Rails 4.2beta, JSON API Resources, Country Select 2.0, Harpoon, Poodr course learning, and Feature Focus all while riding in our Roles Royce.

August 22nd, 2014

Semaphore is now free for open source projects, URL extraction with PostRank-URI, STI with JSON fields, a different approach to email validation, transit-rails, and the Pixel Perfect Precision Handbook all in this episode of the Ruby5!

August 19th, 2014

We talk about Rails 4.0.9 and 4.1.5, flatten records, introduce Http::Exceptions, manage configurations, and update Devise.

August 15th, 2014

Dokkufy, Rails Helpers, JRuby, Xiki and DHH code review