The article covers most important security issues (based on OWASP cheatsheet) of applications built on Ruby on Rails and gives few tips how to prevent them.
Original post
Preventing security issues in Ruby on Rails (based on OWASP cheatsheet) by @k_kempinski →
The Hidden Cost of Metaprogramming →
There Is No Magic in Ruby →
Magic code? I don’t think so! Today you will learn why there is no magic in Ruby :)
Original post
How to deal with major Ruby on Rails upgrades (like moving from 4.1 to 5.1) →
Gemnasium has been working on various apps, maintaining them, upgrading them and hosting them After all those years, we came with a simple, yet efficient, framework to upgrade apps.
It’s just here.
Let me know what you think! :)
👋
Original post
Ruby Memoization: `||=` vs. `defined?` syntax by @Azdaroth
In the majority of the Rails applications or even Ruby gems you can find a lot of use cases where you need to memoize a result of some computation for performance benefits and to not compute it again if this result has already been computed. Seems like doing the assignment to some instance variable with ||= operator is the most commonly used solution for this purpose, e.g. @result ||= do_some_heavy_computation. However, there are some cases where it might not produce the expected outome and you should actually use defined? operator instead. [Read more]
Practical Graph Theory in Ruby →
Zen Rails Security Checklist →
Checklist of security measures to be implemented when developing a Ruby on Rails application.
Original post
An Object That Behaves Like a File? →
Mock server built using Sinatra and backed by SQLite
A mock server to easily setup mock responses for HTTP URLs. Can be Used to test client applications manually and using automation. https://github.com/mvemjsun/mock_server
Instrumenting Sidekiq →
Monitoring your taskqueue to get deeper visibility on usage trends, find out slow jobs or queue congestion.
Here’s how we do it with a Sidekiq middleware, InfluxDB and Grafana.
Original post
Your own free PaaS with Dokku and Let’s Encrypt by @R4yTr4cer
There are many online services that provide an efficient and relatively cheap entry-level PaaS (e.g. Heroku, EngineYard), but what about self-hosted alternatives? This post will show you how to build a self-hosted PaaS to host web applications in almost any modern technology (inc. Ruby, Node.js, Go and more) in around 15 minutes.
https://blog.ragnarson.com/2017/03/28/your-own-free-paas-with-dokku-and-letsencrypt.html
ActiveModel::Errors API Redesign Initiative →
Sometimes ActiveModel::Errors API cannot cope with complex business logic or requirements elegantly.
Let’s redesign an API which is suitable for more complex use case. Share with us the inconveniences you have faced, and suggest a better, more usable API!
Currently we are at the initial stage, mainly to:
- Collect use case
- Design API
So come to our wiki, see what’s going on, and join us!
The second stage will then start on 1st July 2017, where we can discuss on how to implement the redesigned API. Maybe we can do it in Rails, maybe we can do a 3rd party library. We shall see!
Original post
Dockrails - Simple CLI to Generate and Run a Rails environment with Docker! (by @g_montard) →
Many of us have been struggling to setup a usable and efficient docker development environment for Rails App.
This Gem include a CLI that generate your docker environment then provide a simple command to run it.
Original post
Using Chef and Capistrano to deploy a Rails application on Ubuntu 16.04 →
Best Books to Learn Ruby on Rails - intermediate level by @ProgRails →
We’re back with the ‘Best Books to Learn Ruby on Rails’ series! This time - intermediate level
Original post
