Posts Tagged: ruby-on-rails

• 10 Strategies for Upgrading a Rails App with Under 50% Test Coverage

  Discover ten battle-tested strategies to manage risk and successfully upgrade a Ruby on Rails application when test coverage is low.

  Mar 15, 2026

  ruby-on-railstestingupgradeslegacy-code

• Bridging the Gap: Integrating Modern HMR into Old Rails Apps

  Learn how to modernize your legacy Ruby on Rails application's frontend workflow by integrating Hot Module Replacement (HMR) using Vite Ruby to boost productivity.

  Mar 15, 2026

  ruby on railshmrvitejavascriptlegacy code

• CVE-2006-4112: Ruby on Rails Dependency Resolution Vulnerability

  An analysis of CVE-2006-4112, a high-severity vulnerability in early Ruby on Rails versions that allowed remote code execution or denial of service via implicit constant loading.

  Mar 15, 2026

  ruby-on-railssecuritycvecve-2006-4112remote-code-executionrcedenial-of-service

• CVE-2007-5379: Ruby on Rails XML File Disclosure Vulnerability

  An analysis of CVE-2007-5379, a moderate-severity vulnerability discovered in Ruby on Rails versions prior to 1.2.4, which allowed remote attackers to determine the existence of arbitrary files and read contents of XML files on the server.

  Mar 15, 2026

  ruby on railssecuritycvevulnerabilityxmlxxe

• Understanding CVE-2007-5380: Session Fixation via URL-Based Sessions in Early Rails

  An in-depth look at CVE-2007-5380, a session fixation vulnerability in early Ruby on Rails versions caused by URL-based session identifiers.

  Mar 15, 2026

  ruby on railssecuritycvevulnerabilitysession-fixationurl-sessions

• CVE-2008-5189: Ruby on Rails CRLF Injection

  A detailed look at CVE-2008-5189, a CRLF injection vulnerability in early versions of Ruby on Rails that enabled HTTP Response Splitting via the redirect_to method.

  Mar 15, 2026

  ruby-on-railssecuritycvecrlf-injection

• CVE-2008-7310: Spree Hash Restriction Weakness

  An analysis of CVE-2008-7310, a mass assignment vulnerability in early versions of the Spree e-commerce framework for Ruby on Rails that allowed attackers to bypass the payment process.

  Mar 15, 2026

  cvesecurityspreeruby on railsmass assignment

• Logging Sensitive Information in Rails: What Not to Log (CWE-532)

  A comprehensive guide to understanding and preventing CWE-532 in Ruby on Rails applications.

  Mar 15, 2026

  Ruby on RailsSecurityCWE

• Fixing ActionController::RespondToMismatchError in Rails

  Learn what causes ActionController::RespondToMismatchError in Rails, when it occurs, and discover practical strategies to resolve format handling issues in your controllers.

  Mar 24, 2026

  RailsRuby on RailsDebuggingError HandlingActionController

• Fixing CVE-2023-28362: Mitigating XSS via redirect_to in Action Pack

  Learn how to mitigate CVE-2023-28362, a Cross-Site Scripting (XSS) vulnerability related to the redirect_to method in Ruby on Rails Action Pack.

  Mar 15, 2026

  ruby on railssecuritycvexss

• Fixing Race Conditions in Minitest After Upgrading to Rails 8

  Learn how to identify and resolve flaky tests and race conditions in Minitest caused by parallel testing after upgrading your Ruby on Rails application to version 8.

  Mar 15, 2026

  rails 8minitesttestingrace conditionsruby on rails

• Fix Broken CI Builds from Rails 7.1 Deprecation Warnings

  How to fix broken CI builds caused by Rails 7.1 deprecation warnings.

  Jul 28, 2024

  rubyrailsruby on railscicontinuous integrationdeprecation warnings

• How to Fix The model: nil Error in form_with in Rails 8.0

  Learn why Rails 8.0 throws an ArgumentError when passing model: nil to form_with, and explore three practical approaches to fix this issue during your upgrade.

  Mar 23, 2026

  Rails 8.0Ruby on Railsform_withDebuggingUpgrade

• Implementing Virtual Scrolling in Svelte for Heavy Rails Data Tables

  Master frontend performance by implementing virtual scrolling in Svelte to efficiently render massive data tables in Ruby on Rails applications.

  Mar 15, 2026

  ruby-on-railssvelteperformancevirtual-scrollinginertiajsfrontend

• Improving Frontend Security with Strict Content Security Policies in Rails 8

  Learn how to mitigate Cross-Site Scripting (XSS) and meet compliance requirements using nonce-based Strict Content Security Policies (CSP) in Rails 8.

  Mar 15, 2026

  ruby on railsrails 8securitycspfrontendxss

• Lazy-Loading Frontend Components in a Rails Inertia.js Architecture

  How to implement code splitting and lazy loading in a Ruby on Rails application using Inertia.js to improve frontend performance.

  Nov 19, 2023

  ruby on railsinertia.jsjavascriptperformance

• Migrating from Webpacker to Vite on Rails

  A comprehensive guide to replacing Webpacker with Vite in your Ruby on Rails application for faster frontend builds and Hot Module Replacement.

  Mar 15, 2026

  Ruby on RailsViteWebpackerFrontendUpgrade

• Migrating Legacy jQuery Code to Lightweight Svelte Components

  Learn how to pragmatically modernize legacy jQuery codebases in Ruby on Rails applications by incrementally migrating to lightweight, compiled Svelte components.

  Mar 15, 2026

  jQuerySvelteRuby on RailsFrontendMigration

• Prioritizing Customer Wellbeing and System Stability During Major App Upgrades

  Discover practical strategies for maintaining system stability and customer wellbeing during major Ruby on Rails app upgrades.

  Mar 15, 2026

  Ruby on Railsupgradesmigrationtechnical debtmonitoringsystem stabilityprogressive deliverydatabase migrations