Pick of the Day

Sponsored By

Ruby on Rails security strategy guideThe complete Rails guide to developing a security strategy for busy lead architects. Limited free offer.

Receive 2(ish) monthly updates of the best new Rails security resources! (No spam, I promise)

Rails Security Topics

More topics to come soon. Subscribe to the newsletter to hear about it first.

Newest Resources

Command injection in Rails

Injecting command line parameters or entire Unix commands

HTML-safe, ActiveSupport::SafeBuffer explained

How does Rails’ XSS protection work exactly

XSS protection in Haml templates

Haml templates support Rails’ XSS protection

Httponly cookies in Rails

Why and how, for session and normal cookies

RubyGems security

Keep your gems and sources safe

See all resources Resources for beginners Advanced-level resources