@psnively Yes, they *absolutely* did. No question there. Pervasive use of by default dangerous YAML parsing is what I meant was shady.
@tehgeekmeister @psnively Rubyists have been sloppy about serialization in general, I guess, but there's no larger systemic issue
-
-
-
@tehgeekmeister@psnively Rails has built-in stuff to stop SQLi, CSRF, and XSS. Yes, sometimes vulns are found in the framework... -
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.