Are there any tools to test the security of your rails application?
Things that can automatically test sql injection, cross-site scripting, etc...
I'm not sure if there are any plugins out there for testing the security of your code, but here's some reading about the potential pitfalls and the fixes required for Rails apps:
Safe ERB is a plugin that will raise an exception for any unescaped strings in your view templates i.e. dynamic data not escaped using the "h" method.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With