the 'security' block should really be at the top of the README. lines like "fredit has rudimentary security features." just underline how much ruby needs perl's taint option.
while I could use the private 'secure_path' method in the fredits controller as a initial point where the gem could be improved, I think that it's better to just say 'do not use this' instead.
tjriley82's comment paraphrasing the "teach a man to fish" aphorism makes more sense to me.
while I could use the private 'secure_path' method in the fredits controller as a initial point where the gem could be improved, I think that it's better to just say 'do not use this' instead.
tjriley82's comment paraphrasing the "teach a man to fish" aphorism makes more sense to me.