Default Ruby on Rails Options

A lot of times, we will create a new Ruby on Rails application and go through the process of our normal configuration setup. Sometimes, we will create a template to expedite our setup like in a recent screencast episode. https://www.driftingruby.com/episodes/templating-ruby-on-rails-applications Other times, we will need to create a new Ruby on Rails application and we […]

Read More

Loofah Gem – CVE-2018-16468

The Loofah gem recently had a vulnerability reported which could potentially expose your application to a Cross Site Scripting attack. From https://nvd.nist.gov/vuln/detail/CVE-2018-16468 it reads In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished. Since the Ruby on Rails framework depends on rails-html-sanitizer and […]

Read More

Hacking content_for to create a simple display helper

Update: Check out https://www.driftingruby.com/episodes/benchmarking-and-refactoring-the-content_for-view-helper for a screencast update to this article where things are refactored to reduce technical debt. So, this isn’t probably even the best way to do this, but I was playing around in a side project and wanted to see what I could do to have some consistency throughout my application; specifically around the […]

Read More