Rails' url_for is useful for generating routes from a Hash, but can lead to an open redirect vulnerability.

When you write your next CarrierWave uploader, consider processing your images with libvips instead of ImageMagick. Reasons for libvips

When RubyMine reports Rubocop returning "exit code -1", upgrading Rubocop can be the fix: gem install rubocop "The logs" can...

It most cases it's not necessary to add a version constraint next to your gems in the Gemfile. Since...

makandra dev

If you have a fully functional CI pipeline but no CD, you might find yourself frequently waiting for CI (with...

Code splitting is a feature of esbuild that can keep huge libraries out of the main bundle. How code splitting...

jacopretorius.net

You can use rake --where task to find the source location that defines task: bundle exec rake --where assets:precompile...

Debugging your integration tests, that run a headless Chrome inside a docker image, is tricky. In many cases you can...

makandra dev

The rubocop binary has a few interesting flags: rubocop (using the --parallel default ) scans the current repository for linting issues...

Every Rails response has a default ETag header. In theory this would enable caching for multiple requests to the same...

tl;dr asdf allows you to manage multiple runtime versions with a single CLI tool and is backwards compatible by...

A lot of web applications require being called over https, which is a good thing. It's possible to configure...

By activating strict_loading you force developers to address n+1 queries by preloading all associations used in the index...

github.com

Since Ruby 3.2.0 you can measure coverage support for eval statements and support has been added for the simplecov gem...

SASS has an @extend keyword to inherit styles. .alert color: red &.-framed border: 1px solid red padding: 5px &.-homepage

If you use a newer SSH key generated with the ED25519 algorithm instead of RSA (see Create a new SSH...

In the past we validate and set default values for boolean attributes in Rails and not the database itself.

Sometimes I ran across a GitHub merge request of a gem where it was not completely obvious in which version...

After upgrading to Rails 6.1.7.2 one of our apps printed a wall of warnings while booting: /var/www/app/shared/bundle/ruby/2.6.0/gems/net-protocol-0.2.1/lib/net/protocol.rb:68: warning: already...

bundler.io

Bundler so far ignored the version specified under BUNDLED_WITH in the Gemfile.lock. This had two annoying consequences:

makandra dev

Timecop is a great gem to set the current time in tests. However, it is easy to introduce flakyness to...

makandra dev

In a Jasmine spec you want to spy on a function that is imported by the code under test. This...

We usually rely on VCR and WebMock to prevent any real network connection when running our unit tests.

If you're experiencing that your bundle install command fails with an error message like this, rubygems.org might...