8 posts tagged with "Ruby"
View All TagsImproving callable service objects with private constructors in Ruby
Prepending Modules to the Rescue
Arbitrary Code Execution Vulnerability in Simple Form CVE-2019-16676
Summary
On 2019-08-02 we at bitcrowd discovered a security vulnerability in simple_form
. simple_form
is one of the go-to ways to easily handle HTML forms in Ruby on Rails. The security issue allows arbitrary code execution in the worst case, but at least has potential for data corruption or DOS attacks. This security issue was responsibly disclosed by bitcrowd. Find details about the timeline of the events and a more detailed description below.
Streams Are My Reality
jRubyConf.eu and eurucamp 2015
The first time I found out about eurucamp was during the euruko 2011. Some people talked about this “unconference” close to the venue that a few people had organized. The tickets for the euruko had been sold out too quickly and everyone who could not buy one was invited to meet there instead. At that euruko I gave my first real talk and because of that I was way too nervous to take the U8 to visit them. I should have done it.
Ruby Usergroup February
Yesterday we had the awesome chance to host the Rug:B again. And as always, it was packed. It was really great to see so many people in our office.
RUG::B July 2014
On the ruby usergroup at Soundcloud Bodo and Rin gave two presentations. Here you will find their Slides: