13623 today

    News

    CVE-2026-41316: ERB @_init deserialization guard bypass via def_module / def_method / def_class | Ruby
    CVE-2026-41316: ERB @_init deserialization guard bypass via def_module / def_method / def_class | Ruby Any Ruby application that calls Marshal.load on untrusted data AND has both erb and activesupport loaded is vulnerable to arbitrary code execution. This includes: Ruby on Rails applications that import untrusted serialized data – any Rails app (e...
    A New Chapter for Ruby Central
    A New Chapter for Ruby Central We have parted ways with our Executive Director, our PR agency, our CFO, and concluded several contractor engagements. These were not easy decisions, but they were necessary to ensure the long-term sustainability of Ruby Central. Since joining the...
    JRuby 10.1.0.0 Released — JRuby.org
    JRuby 10.1.0.0 Released — JRuby.org JRuby 10.1.0.0 is our first major release since catching up with Ruby compatibility. We have used this opportunity to explore many experimental optimizations and improvements we have been chasing for many years. Ruby 4.0 compatibility is largely c...
    RailsPress - Blog Engine, CMS & Entity System for Rails 8
    RailsPress - Blog Engine, CMS & Entity System for Rails 8 A mountable Rails engine for blogging, content management, and structured data. Posts with rich text, CMS blocks with inline editing, and an Entity System to manage any model with a simple DSL.
    TruffleRuby 34 is Released | TruffleRuby
    TruffleRuby 34 is Released | TruffleRuby TruffleRuby 34 is here, bringing full Ruby 3.4 compatibility, major parsing optimizations (up to 23% faster parsing), and a new Prism-based Ripper implementation with 20x to 40x speedups. The release is available on GitHub, in your favorite Ruby ...
    Ruby on Rails Creator Says Senior Developers Excel at Using AI Agents - Business Insider
    Ruby on Rails Creator Says Senior Developers Excel at Using AI Agents - Business Insider David Heinemeier Hansson said that senior developers are best suited to seize this agentic AI moment."The most successful and applicable agent acceleration that I've seen at 37 Signal has been from the most senior people, the people who are able t...
    Release v8.0.0 - Into the Arena · puma/puma
    Release v8.0.0 - Into the Arena · puma/puma Add env["puma.mark_as_io_bound"] API and max_io_threads config to allow IO-bound requests to exceed the thread pool max, enabling better handling of mixed workloads ([#3816], [#3894]) Add single and cluster DSL hooks for mode-specific configuratio...
    Trusted Publishing - RubyGems Guides
    Trusted Publishing - RubyGems Guides With Trusted Publishing, releasing a new version of your gem is as simple as pushing a git tag to GitHub. There are no API tokens to create, rotate, or store as secrets — GitHub Actions securely authenticates with RubyGems.org on your behalf using...
    Temporarily disabling language support on rubygems.org - RubyGems Blog
    Temporarily disabling language support on rubygems.org - RubyGems Blog I’m one of the operators of rubygems.org. Here’s what’s been happening over the past week, and a temporary change we’re making as a result. For the past seven days, rubygems.org has been under sustained bot traffic from many different sources scr...
    Is Your Ruby Version Still Supported? A Maintainer's Guide to Ruby's Release Cycle - DEV Community
    Is Your Ruby Version Still Supported? A Maintainer's Guide to Ruby's Release Cycle - DEV Community I'm Hiroshi Shibata (hsbt), a Ruby committer and one of the branch maintainers responsible for Ruby's stable releases. I also maintain RubyGems and Bundler. TL;DR Since the March 2026 security releases of Ruby 3.3.11 and 3.2.11, no critical build...

    Visit our blog

    Blog Ruby On Rails

    Categories

    Useful Links

    Quick Links

    Get in Touch

    Ruby On Rails Bosnia

    [email protected]

    [14367, 14088, 31659, 18717, 15924, 14315, 16605]

    Ruby On Rails Bosnia © 2016

    Template By HTML Codex