• Updating Rails

    Updated: 2013-01-11 03:33:14
    Hopefully all Rails developers are now aware they should immediately upgrade to Rails 3.2.11 because of a recently announced security vulnerability. If you're reading RubyFlow, you likely know how to update Rails. However, for part-time and hobby developers, here's an article Updating Rails that offers instructions and advice.

  • Asset pipeline internals, Sprockets and rake-pipeline

    Updated: 2013-01-11 00:32:44
    I just published an article about asset pipeline internals</a covering how they work, and how to build your own with Sprockets or rake-pipeline.

  • Long Live Padrino (and Sinatra)

    Updated: 2013-01-10 19:40:41
    RubyFlow The Ruby Community Blog Home Submit Sign Up Log In leaders Long Live Padrino and Sinatra Posted by nesquena on January 10, 2013 0 comments After the last release of Padrino several months ago , we have had a long hiatus of new releases . Well , in the spirit of the new year we have a renewed commitment to Padrino and a couple of announcements . First , we have a new core team member DarĂ­o Cravero . Second , we have a Padrino meetup in San Francisco on the 24th which we would love for anyone interested in the area to attend . Finally , we have a new release soon with a whole host of important changes and bug fixes . If you have any questions or feedback for us , please let us on on twitter padrinorb Comments Post a Comment Comment abilities for non registered users are currently

  • Evidence-based software development

    Updated: 2013-01-10 18:33:42
    I'm thinking of starting up a community funded project to do some scientific experiments that would be focused on answering questions that everyday programmers might benefit from. I'd love to hear your feedback on my initial ideas about this project, so please check out this gist.

  • ActiveResource XML bug fix for Rails 3.0.19

    Updated: 2013-01-10 14:27:27
    There's a current issue with ActiveResource raising the error `Hash::DisallowedType: Disallowed type attribute: "yaml"` when requesting XML from Rails v3.0.19. It should be fixed soon in v3.0.20. You can find more information in our blog post.

  • Rails PoC exploits for CVE-2013-0156 and CVE-2013-0155

    Updated: 2013-01-10 06:48:04
    RubyFlow The Ruby Community Blog Home Submit Sign Up Log In leaders Rails PoC exploits for CVE-2013-0156 and CVE-2013-0155 Posted by postmodern on January 10, 2013 0 comments I finished developing Proof-of-Concept PoC exploits for Rails vulnerabilities CVE-2013-0156 and CVE-2013-0155. Read the write up or read the exploits : rails_dos.rb rails_jsonq.rb rails_sqli.rb rails_rce.rb If you haven't already upgraded Rails , DO IT NOW Comments Post a Comment Comment abilities for non registered users are currently deactivated , pending time to add a proper CAPTCHA to solve the escalating spam problem . Sorry 8389 items , 2616 users , 5341 . comments Top Ruby and Rails Jobs Applications Developer Central Intelligence Agency District of Columbia Senior Rails Developer Lightspeed Systems Austin ,

  • Auto-reload require files in Rails without restarting server

    Updated: 2013-01-10 05:59:06
    Here's my findings on how to auto-reload require files in Rails without restarting server. The solution is now released as require_reloader gem, with Rails 3+ support including 3.1 and 3.2. Feedbacks are welcomed.

  • Ditch YAML and Embrace Ruby's Lisp Heritage

    Updated: 2013-01-09 19:23:35
    Ruby (Rails database configuration, I'm looking at you) should embrace its Lisp heritage move to using Ruby instead of YAML for configuration. Let me know what you think.

  • Building an Ember app with RailsAPI - Part 2

    Updated: 2013-01-09 15:55:58
    Part 2 is less Ruby and more Ember but I draw comparisons on Ember to Rails to make it more digestible for the Rails devs.

  • A collection of Ruby books compiled by a Rubyist of 7 years

    Updated: 2013-01-09 00:05:07
    As a side project, I've put together a site with collections of books from Amazon. I hope you all find the books useful. While the links are affiliate links, I hope I'm providing the community with something of value by collecting these resources in one place and adding little notes on why they're useful to Rubyists. I'd love any suggestions!

  • Rails Vulnerabilties, Your Web Apps Are at Risk

    Updated: 2013-01-08 20:44:36
    , Computing Ruby Search Ruby Learning Ruby Practical Ruby Projects Share Free Ruby Newsletter Sign Up Discuss in my forum Rails Vulnerabilties , Your Web Apps Are at Risk By Michael Morin About.com Guide January 8, 2013 My Bio Headlines Forum RSS Follow me : on Facebook Twitter According to the announcement there are several vulnerabilities having to do with the Rails parameter parsing . Parameter parsing allows you to pass XML data to Rails to be parsed automatically into various Ruby types . This is a convenience feature , the client gives you XML and you magically get Ruby objects without having to manually parse them . However , several bugs in this code allows an attacker to do all types of nasty things , including arbitrary code execution and SQL . injection This is big , you should

  • What is a Controller?

    Updated: 2012-12-31 10:39:53
    Computing Ruby Search Ruby Learning Ruby Practical Ruby Projects Share Free Ruby Newsletter Sign Up Discuss in my forum What is a Controller By Michael Morin About.com Guide December 31, 2012 My Bio Headlines Forum RSS Follow me : on Facebook Twitter In a Ruby on Rails application , the role of the model and view are easily understood by most . However , the role of the controller is often glossed over , misunderstood or even disputed among Rails developers . So really , what is a Rails controller Comments 0 See All Posts Share Prev Comments No comments yet . nbsp Leave a Comment Leave a Comment Name Email : never displayed URL Your Comment Line and paragraph breaks are automatic . Some HTML allowed : Say It Must Reads A Beginner's Guide to Ruby Install Ruby Getting Started With Ruby 5

  • Reddit Clone in Rails Part 3: Integrating Devise

    Updated: 2012-12-31 10:07:14
    <p>Last time we set up users with the Devise gem, now let's <a href="http://clk.about.com/?zi=1/1hc&zu=http://ruby.about.com/od/redditclone/ss/Part-4-Integrating-Devise.htm">integrate the new users into the site</a>.</p>

  • Reddit Clone in Rails Part 3: Installing Devise

    Updated: 2012-12-31 10:06:12
    <p>Last time we set up users with the Devise gem, now let's <a href="http://clk.about.com/?zi=1/1hc&zu=http://ruby.about.com/od/redditclone/ss/Part-4-Integrating-Devise.htm">integrate the new users into the site</a>.</p>

  • Rails Application Flow Control

    Updated: 2012-12-30 11:11:19
    <p>Last time we set up users with the Devise gem, now let's <a href="http://clk.about.com/?zi=1/1hc&zu=http://ruby.about.com/od/redditclone/ss/Part-4-Integrating-Devise.htm">integrate the new users into the site</a>.</p>

  • Ruby Programming 39th Batch: Registrations now open

    Updated: 2012-12-21 02:41:43
    Registrations are now open for RubyLearning’s popular Ruby programming course. This is an intensive, online course for beginners that helps you get started with Ruby programming. Here is what Demetris Demetriou, a participant who just graduated, has to say – “When I joined this course I was sceptical about how useful this course would be [...] (Powered by LaunchBit)

Current Feed Items | Previous Months Items

Dec 2012 | Nov 2012 | Oct 2012 | Sep 2012 | Aug 2012 | Jul 2012