Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
prodigal_erik
on Jan 2, 2013
|
parent
|
context
|
favorite
| on:
SQL Injection Vulnerability in Ruby on Rails; affe...
Not really a rubyist, but if you must do something as crazy as composing a query at runtime, isn't Object#tainted? the way to find out whether a string came from application code or from a user?
Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
