27 Dec '14, 2pm

#eCore : Ruby on Rails patches tackle #SQLinjection vulnerabilities - Computerworld (blog)...

Two SQL injection vulnerabilities were patched in Ruby on Rails, a popular open-source Web development framework used by some high-profile websites. The Rails developers released versions 3.2.19, 4.0.7 and 4.1.3 of the framework on Wednesday, and advised users to upgrade as soon as possible. Hours later they released versions 4.0.8 and 4.1.4 to fix a regression caused by the 4.0.7 and 4.1.3 updates. One of the two SQL injection vulnerabilities affects applications running on Rails 2.0.0 to 3.2.18 that also use the PostgreSQL database system and query bit string data types. The second vulnerability affects applications running on Rails 4.0.0 to 4.1.2 when using PostgreSQL and querying range data types. Despite affecting different versions, the two flaws are related and both allow attackers to inject arbitrary SQL code into queries using specially crafted values. "The only f...

Full article: http://www.computerworld.com/article/2489654/malware-vuln...

Tweets

Probably the hottest discussion on reddit right...

reddit.com 27 Dec '14, 8pm

As someone, who has written every single line of code over SSH, vi is great because you can find it everywhere as standard...

Why startups use Ruby on Rails via @imgur

imgur.com 28 Dec '14, 1am

Ruby on Rails is a newish web dev framework that's esoteric and has almost no tangible benefit but is trendy, especially w...

NowBrowsing: A Guide for Upgrading Ruby on Rail...

edgeguides.rubyonrails.org 29 Dec '14, 5am

The best way to be sure that your application still works after upgrading is to have good test coverage before you start t...

Why start ups only want Ruby on Rails developers?

twitter.com 28 Dec '14, 3pm

To bring you Twitter, we and our partners use cookies on our and other websites. Cookies help personalize Twitter content,...

Ruby on Rails 4アプリケーションプロ... 山田祥寛 ¥3,500 #キンドル ...

amazon.co.jp 27 Dec '14, 10pm

B00P0UR1CA,B00LBPDNSY,B00MWK10CS,B00P0UR1RU,B00NXMTLHK,B00QWAN4RS,B00GJGOPU0,B00R18ZL12,B00M0ESXUI,B00OZGM9VI,B00P2EG5QM,B...

Rails Girls Warsaw 7-8th February 2015 by @rail...

railsgirls.com 29 Dec '14, 11am

Application opening: 29.12.2014 Application deadline: 18.01.2015 Acceptances informed: 26.01.2015 Location: Marzyciele i R...

Supporting rails prototype helper while migrati...

botreeconsulting.com 26 Dec '14, 6am

Migrating a Rails application from Rails 2 to Rails 3 is a very tedious task. There are too many deprecated APIs and a num...

I just released Slop 4.0 (it's been rebuilt) an...

rubygems.org 27 Dec '14, 5pm

RubyGems.org is the Ruby community’s gem hosting service. Instantly publish your gems and install them. Use the API to int...

#cybersecurity Vuln: Ruby on Rails Security Byp...

securityfocus.com 16 Dec '14, 8am

Ruby on Rails Security Bypass and SQL Injection Vulnerabilities Bugtraq ID: 46292 Class: Failure to Handle Exceptional Con...

Ruby and Rails Development Environment Using Chef and Vagrant

Ruby and Rails Development Environment Using Ch...

avi.io 26 Dec '14, 6pm

TL:DR We created a Vagrant+Chef cookbooks combination for provisioning a new laptop for Ruby/Rails development. Fork it he...

#interesting Planet Ruby - All the News About R...

planetruby.herokuapp.com 27 Dec '14, 1pm

Some might say 2014 has been a year of programming related death. TDD is dead . Agile is dead . The Framework is dead . If...

Est-ce que quelqu'un peut me filer un coup de main sur de code Rails ? merci :) #rails #ruby #rmagi…

Est-ce que quelqu'un peut me filer un coup de m...

forum.humancoders.com 27 Dec '14, 4pm

Générer une image et la retourner dans le contrôleur d'une application Ruby on Rails Ruby camilleroux — 2014-12-27T16:36:4...

Why the f#ck startups only want ruby on rails d...

twitter.com 28 Dec '14, 4am

To bring you Twitter, we and our partners use cookies on our and other websites. Cookies help personalize Twitter content,...