Tutorials
Ruby on Rails String Interpolation led to Remote Code Execution
@nahamsec and I discovered a Cross-Site Scripting vulnerability a few months ago related to Rails typecasting request variables into JSON. This caused the output to be JSON formatted and the JSON indexes would avoid XSS encoding. We decided to run...
How to get your Heroku app to optimize your images for you automagically using Paperclip, image_optim and special buildpacks
Whether it's this KISS Metrics block post, another KISS Metrics block post, study after study show that delivering your content fast, fast, fast is make-or-break factor in today's web economony. That's why it's so important that your images are op...