Riding Rails

The official Ruby on Rails (RoR) framework blog

Rails 3.1: Release candidate


~3 years ago by David Heinemeier Hansson on Riding Rails.
As I promised at RailsConf, we’re finally good to go on the Rails 3.1: Release Candidate. This is a fantastically exciting release. We have three...

Ruby Hero Awards 2011


over 3 years ago by Gregg Pollack on Riding Rails.
It’s that time again to take a moment to think about those who have impacted the Ruby community this year but have not received the recognition...

Rails 3.0.6 has been released!


over 3 years ago by aaronp on Riding Rails.
Hi everybody! Rails 3.0.6 has been released! Let's get the serious business out of the way first: Rails 3.0.6 contains an important security fix! Please...

Rails 3.0.5 has been released!


over 3 years ago by spastorino on Riding Rails.
Aaron Patterson showed us some tenderlove this week by releasing Rails 3.0.5. Have a peek at what got updated. Bugs Fixed Fix when gzip returns a...

CSRF Protection Bypass in Ruby on Rails


over 3 years ago by Michael on Riding Rails.
There is a vulnerability in Ruby on Rails which could allow an attacker to circumvent the CSRF protection provided. This vulnerability has been assigned...

New Releases: 2.3.11 and 3.0.4


over 3 years ago by Michael on Riding Rails.
Two new versions of Ruby On Rails have been released today. As well as including a number of bugfixes they contain fixes for some security issues. The...

Conferences for 2011


over 3 years ago by Gregg Pollack on Riding Rails.
One of the reasons the Ruby and Rails community is so strong and passionate is because of the awesome regional conferences that happen all around the globe...

Rails for Zombies


over 3 years ago by Gregg Pollack on Riding Rails.
This morning my team over at Envy Labs released a free online tutorial called Rails for Zombies. The website combines screencasts with in-browser coding...

Rails 3.0.3: Faster Active Record plus fixes


over 3 years ago by David Heinemeier Hansson on Riding Rails.
How about some free speed? Well, here you go. Rails 3.0.3 includes a much faster version of Active Record that reclaims the performance lost when we went...

Security Vulnerability in Nested Attributes code in Ruby On Rails 2.3.9 and 3.0.0


almost 4 years ago by Michael on Riding Rails.
There is a vulnerability in the nested attributes handling code in some versions of Ruby on Rails. An attacker could manipulate form parameters and make...