There are multiple ways to redirect URLs to a different URL in Rails, and they differ in small but important...
Rails' url_for is useful for generating routes from a Hash, but can lead to an open redirect vulnerability.
Rails' Strong Parameters enable you to allow only specific values from request params to e.g. avoid mass assignment.
You can tell npm to install a package globally with npm -g install @puppeteer/browsers. However, it seems that its not...
Rails offers several methods to manage three types of different cookies along with a session storage for cookies. These...
Intel CPUs receive updates, including security relevant upgrades, through 2 channels: Firmware/UEFI BIOS updates can also update the microcode in...
Splitting up commits makes the process of reviewing often easier, since you can create several merge requests or review every...
TL;DR Still has caveats. Code splitting is a feature of JavaScript bundlers that can keep huge libraries out of...
As we are slowly switching from Cucumber scenarios to RSpec feature specs, you might be tempted to write assertions like...
Context and further resources Even though you can get 90% of debugging done with up to 5 basic byebug commands...
I recently noticed that better_errors allows you to to open files from within your favorite editor. However it was...
It is possible to manipulate the forwarded ports of an established interactive SSH session. This is done by opening the...
When you allow file uploads in your app, a user might upload content that hurts other users. Our primary concern...
Rack::SteadyETag was a Rack middleware that generates the same default ETag for responses that only differ in XOR-masked...
Every Rails response has a default ETag header. In theory this would enable caching for multiple requests to the same...
tl;dr asdf allows you to manage multiple runtime versions with a single CLI tool and is backwards compatible by...
We recently encountered a problem with GlusterFS (7.x) when an application used the flock syscall on a GlusterFS path...
tl;dr The strict-dynamic source list keyword allows you to simplify your CSP policy by favoring hashes and nonces...
In Ruby on Rails ActiveRecord::Relation#merge overwrites existing conditions on the same column. This may cause the relation to...
To navigate between test and test subject Rubymine requires you to set the test root sources as Test Sources Root...
Let's say we have posts with an attribute title that is mandatory. Our example feature request is to tag...
A lot of web applications require being called over https, which is a good thing. It's possible to configure...
We will achieve this by creating a block accepting method to optionally create and then lock a .lock File of...
When a nginx reverse proxy complains about upstreams sending too big headers, tweaking the buffers responsibly can help to prevent...