A brief introduction to HIPAA compliance for developers in health technology.
Emailed password reset links are a common part of web applications. Is your site leaking these confidential links to third party sites?
Paperclip is affected by CVE-2016–3714 if used with ImageMagick 7.0.1-0 or earlier.
There is no need to upgrade Paperclip in light of CVE-2016–3714. You may choose to upgrade ImageMagick regardless.
We released Paperclip v4.2.2 with a security fix.
Ruby on Rails makes it easy to build web apps with security in mind.
In short, we’re all responsible. And this is why.
How to handle vulnerabilities in your open source project.