Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Are there any security test plugins for rails? [closed]

Are there any tools to test the security of your rails application?

Things that can automatically test sql injection, cross-site scripting, etc...

like image 318
vrish88 Avatar asked Apr 16 '09 17:04

vrish88


2 Answers

I'm not sure if there are any plugins out there for testing the security of your code, but here's some reading about the potential pitfalls and the fixes required for Rails apps:

  1. Quark Ruby: Ruby on Rails Security Guide
  2. Official Ruby on Rails Security Guide
like image 153
Pras Avatar answered Oct 22 '22 11:10

Pras


Safe ERB is a plugin that will raise an exception for any unescaped strings in your view templates i.e. dynamic data not escaped using the "h" method.

like image 20
John Topley Avatar answered Oct 22 '22 11:10

John Topley