4:53 Play Subscribe with or Intro song by Falseta

Episode #377 - June 11th, 2013

30d011dd1b103a523f5bc75cf4b31833.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Aimee Simone 9c5541e591a62dd93a2fd2d45b5732dd.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Olivier Lacan

RubyGems paranoia, unexpected chained scopes in Rails 4, Rubberband flamethrowers, Stripe with Rails, and efficient Git pairing.

Subscribe to our mailing list!

This episode is sponsored by Top Ruby Jobs. Everyone deserves to love their job (and it's probably in Ruby).

  • TopRubyJobs
  • RubyGems Paranoia
  • Scopes in Rails 4
  • Rubberband Flamethrower
  • Stripe with Rails
  • Git Pairing
  • Ruby5

Being Paranoid with RubyGems Jump to Story

Fabien Catteau wrote a very interesting post on the discussion board at Gemnasium regarding malicious gems. Fabien goes through a few example scenarios of gems that can exploit your system as soon as you install them, but he also explains how to fetch gems to check them out without installing them. While he admits paranoia isn’t exactly practical, he does offer some recommendations to make the Rubygems infrastructure more secure, for instance by not allowing gems to install native C extensions by default.

October 16th, 2014

Unary Operators, Writing fast Ruby, each_with_object, ES6 Transpiler and HStore

October 14th, 2014

RailsRumble, Ruby Motion for Rails devs, how Ruby Hashes work, how to deal with data migrations, clean up your routes file, and get better logs.

October 7th, 2014

Rails data migrations, tools for optimization, Bundler::Updater, using UUID with Postgres, 20,000 Leagues Under Active Record, and Ruby 2.2.0

October 3rd, 2014

Greenscreen.io, rails-disco, onboarding your junior devs, being a better Rubyist, staging environments, and the anti-pattern of absolutes all in this episode of the Ruby5.