ITPub博客

Ruby on Rails近日被发现了两个新的安全漏洞。 1.  CVE-2013-0156 该漏洞存在于Action Pack模块的参数解析代码中，允许攻击者绕过认证系统，注入并执行任意SQL代码，或对Rails应用执行DoS攻击。 ...

JRuby社区今天发布了JRuby 1.7.2版本。 JRuby 1.7分支主要致力于修复任何与Ruby 1.9.3不兼容的问题，还会进行一些功能改进。1.7.2版本的主要改进包括： 重新改造了openssl扩展，允许从gem升级改善了常量和...

JRuby社区今天发布了JRuby 1.7.1版本。JRuby是Ruby编程语言的纯Java实现，它结合了Ruby简洁的语法以及Java丰富的类库。通过JRuby，你可以在JVM上直接运行Ruby程序，调用Java的类库。 在JRuby 1.7分支中，加入...

Ruby 2.0的发布经理Yusuke Endoh宣布了如下几件事：Ruby 2.0.0的直接特性已经冻结，Preview 1发布，正式版的发布日期是2013年2月24日。届时正是Ruby的20周年纪念日，因此2.0版本选择这个时间发布也非常合适。...

Ruby on Rails开发人员近日宣布了Rails::API项目，这是Rails的一个精简衍生版本，主要针对不需要使用完整Rails功能的开发者。 在Rails::API中，移除了ActionView和其他一些渲染功能，可以使不关心Web前端的开...

请注意：这是一篇主观意识的文章。它的目的并不是要说服你使用或者不使用Ruby，或者其他任何技术。这篇文章所涉及到的环境是 Web 开发，而不是通用的编程。我想要通过这篇文章解释这些年来非 Ruby 社区对于 Ruby...

Ruby开发团队近日在官方博客中称，Ruby 1.9分支中使用的Hash函数中存在安全漏洞，可能导致Hash-flooding DoS攻击。开发团队紧急发布了Ruby-1.9.3 p-327版本，1.9用户应尽快升级至该版本。 详细信息 该漏洞类...

　　随着计算机的快速发展，编程语言也越来越多，在10年因为开发速度的问题，Java成了编程语言的老大，随着Java不断的臃肿与复杂，开发者也不断的去寻找，尝试各种新的语言，也因近年动态语言有后来居上的趋势，...

Suppose you need to parse a chunk of Ruby code (and by Ruby I obviously mean Ruby 1.9). What options do you have?I want to rip it, rip itThe obvious choice is Ripper, an external interface to ...

Typically you have your grails installed into some directory, created environment variable GRAILS_HOME and you are ready to go.But what if you have few projects with different grails versions? Y...

I discovered today that Ruby treats underscores a little bit differently when it comes to variable names.Suppose, for the sake of argument, that we have a set of data that looks like this:CODE:p...

You’re probably familiar with __LINE__ keyword in Ruby. Wherever it’s used, it refers to the line number in the current file. It says so right here in the Ruby docs.QUICK! What’s the output o...

Earlier this summer I had the opportunity to speak at a fantastic regional conference,Magma Rails.The location is not what you might expect, being an off-the-beaten-path part of Mexico. There ar...

LayerVault is built using the popular web framework, Ruby on Rails. The framework, at times known for its divisiveness, has allowed LayerVault to grow from a single box to a swarm of machines over...

I’ll preface this post by saying that I am a fan of Ruby on Rails, and that’s where I do most of my software development these days. I have, however, been working in Rails for sufficiently long ...

If you are subscribed to our Arkency newsletter (we send an email every week or two with some interesting links and our comments), you probably noticed that there is an ongoing debate in our team - wh...

[i=s] 本帖最后由 jieforest 于 2012-8-3 09:22 编辑 We are happy to announce a new version of BitNami RubyStack that includes the latest version of Rails, 3.2.7.BitNami RubyStack simplifies the ...

Rails开发团队今天发布了Rails 3.2.7版本。 该版本包含了一个重要的安全漏洞修复程序，这是Action Pack中的一个拒绝服务漏洞。如果使用摘要式（digest）验证，则可能导致拒绝服务（DoS）攻击。 该漏洞影响所...

Pretty much every aspect of our lives is being changed by software. Software has the power to delight, entertain, help us communicate, simplify our work, enhance our creativity, connect us to old ...

At RailsConf 2012, we sat down with five of our customers (including Jesse Proudman, panel moderator and CEO of the Blue Box Group,) and asked them about the ups and downs of scaling massive websi...