31 Jan '13, 3pm

Not many new libraries or code but a ton of great articles in this week's Ruby Weekly (issue 130!): - enjoy.

RubyGems.org Compromised I wouldn't normally link to a Hacker News discussion but it's a great source of information. Basically, a gem was pushed to RubyGems.org that took advantage of a YAML-parsing vulnerability to break into some of the site's configuration files, prompting a widespread security alert. (Things have now died down a bit, thankfully.) Rails 3.0.20, and 2.3.16 Released Due to JSON Vulnerabilities Fresh security fixes are out for the Rails 3.0.x and 2.3.x branches. If you're on Rails 3.1.x and 3.2.x, you can breathe easy (for now). How to Apply a Rails Security Patch There may be reasons you can't upgrade your entire set of Rails gems so you'll instead want to apply a patch. Brian Buchalter shows how it's done. Security Announcement: Devise v2.2.3, v2.1.3, v2.0.5 and v1.5.3 Released From our Sponsor Monitor Your Apps' Performance Anytime, Anywhere with New R...

Full article: http://rubyweekly.com/archive/130.html

Tweets

security

kalzumeus.com 31 Jan '13, 3pm

Many Rails developers have not reacted to this news with the alacrity they should have. (See next question.) These applica...

New: Singapore Property Weekly Issue 88 now out

propwise.sg 28 Jan '13, 1pm

Singapore Property Weekly Issue 88 now out January 28, 2013 In this week’s issue: Lessons from Our Journey to Financial Fr...

New: Singapore Property Weekly Issue 89 now out

propwise.sg 04 Feb '13, 10am

Top Weekly Singapore Property Market Outlook for 2012 and 2013 Lessons from Our Journey to Financial Freedom Singapore Pro...

Daily Search Forum Recap: January 31, 2013

seroundtable.com 31 Jan '13, 9pm

Here is a recap of what happened in the search forums today, through the eyes of the Search Engine Roundtable and other se...

Ruby Weekly #129 is out now and it's pretty, pr...

rubyweekly.com 24 Jan '13, 3pm

In Browser Path Matching with JavaScript Makes It Into Rails 4.0 When debugging routes it can sometimes be difficult to un...

Ruby 2.0.0-rc2 is released

ruby-lang.org 08 Feb '13, 2pm

Ruby 2.0.0-rc2 is released. This will be the last release candidate of Ruby 2.0.0. Please give it a try, and report any is...

SearchCap: The Day In Search, January 31, 2013

searchengineland.com 31 Jan '13, 9pm

Will Facebook’s Graph Search Be Big For Bing Advertisers? Following Facebook’s announcement of Graph Search a few weeks ba...

[Blog Post] Team #Skroutz conceptualizes the Antikythera mechanism for 2013 @Euruko Athens Conference #Ruby #rails

[Blog Post] Team #Skroutz conceptualizes the An...

team.skroutz.gr 01 Feb '13, 12pm

Posted by katsampu at 01 Feb 2013 EuRuKo (European Ruby Conference) is an annual conference about Ruby, a programming lang...

Just released mail_room to make it easy to rece...

github.com 05 Feb '13, 2am

specs, this is just a (working) proof of concept √ finish code for POSTing to callback with auth √ accept mailbox configur...

#ruby people (not just Rails) - you need to upg...

rack.github.com 08 Feb '13, 8am

Some Rails users may not be affected (if they only use Rails managed sessions). If users are using the Marshal (default) s...

Singapore voters continue shift away from rulin...

themalaysianinsider.com 31 Jan '13, 4am

JAN 31 ― Electoral results from Singapore’s most recent-by elections continue the electorates’ shift away from the republi...

MOOCs & Libraries - A Look at the Landscape - @...

hangingtogether.org 28 Jan '13, 12am

MOOCs and Libraries: a look at the landscape January 23rd, 2013 by Merrilee Unless you’ve been hiding under a rock, you kn...

Only 3 weeks until @larubyconf register now it is going to be fantastic!

Only 3 weeks until @larubyconf register now it ...

larubyconf.com 01 Feb '13, 11pm

Recent News & Announcements (all) Our Schedule is almost complete! January 05, 2013 @ 12:00:00 AM UTC - randquistcp@gmail....

We are temporarily taking Ruby deploys offline ...

status.heroku.com 30 Jan '13, 6pm

Heroku Status Current Status and Incident Report Ruby deploys temporarily degraded Development 18:50:33 Update We have ena...

Our February issue is now live! Check it out:

mwrf.com 08 Feb '13, 2pm

Rather than find a single semiconductor technology that is ideal for all applications, the RF/microwave industry relies on...