Issue 128 - January 17, 2013
Featured
The last production patchlevel (p362) was released less than a month ago but many users encountered frequent segmentation faults with it. This release fixes that significant issue and includes some other minor fixes too.
Metasploit is a popular security testing system (written in Ruby, no less) and it already has an exploit module for last week's Rails XML and YAML parameter parsing vulnerability. Brian Buchalter shows how to use it to test if your own Rails apps are safe.
The popular, quirky London-based Ruby conference is back for a fourth outing - save the date. Ticket info and CFP coming soon. You can also follow them on Twitter @rubymanor.
From Our Sponsor
Developers are gaining more influence and control in their organizations than ever before. But why? And what does it mean for you and your company? Get your free copy of "The New Kingmakers," by Redmonk's Stephen O'Grady, free when you sign up for New Relic.
Reading
Mario Chavez presents an extensive tutorial walking through building a simple iPhone app with RubyMotion.
Mark Mandel is working on a series of blog posts about using JRuby and the popular LWJGL graphics library to concoct OpenGL-powered graphics with Ruby. He's also done a tutorial about getting started with shaders.
Researchers investigating the Rails parameter parsing vulnerability discovered that the same or similar vulnerable code had made its way into multiple other libraries. If your application uses these libraries to process untrusted data, it may still be vulnerable even if you have upgraded Rails.
Over at RubySource, Thiago Jackiw looks at basic examples of some of the most talked about new features in Ruby 2.0.
Not content just with showing us how DATA worked last week, Caius Durling is back with a summary of several situations in Ruby where simple refactorings make sense.
Steve Klabnik looks at the distinction between the default Rails stack and the popular Haml, Postgres, RSpec alternative (which he calls the "Prime" stack).
Detailed, up-to-date instructions on how to install the latest release of Rails 3.2 with advice and tips.
Watching and Listening
Just three of the Rogues sit down with Tony Arcieri (famous as the creator of Celluloid) to discuss concurrency, the global interpreter lock, actor-based concurrency, and inter-thread communication.
Joining the ranks of Ryan Bates (keeping it in the family? ;-)) and Avdi Grimm, Mark Bates has launched a monthly subscription based Ruby and JavaScript screencast site.
Libraries and Code
A suite of Sublime Text 2 snippets for Rails 3 and Ruby 1.9 by Tadas Tamosauskas. Recent updates include using the Ruby 1.9 style hash syntax, autocompletion for Rails 3 style routes, validations, and migrations.
Jobs
Expert in bronze age combat, time-travel, and/or elephant husbandry? Carbon Five has immediate openings. Developers also accepted. Return unlikely, glory guaranteed!
If you're passionate about making education better for kids all over the world, you've got solid object-oriented design skills and experience developing web applications, then Zoodles would like to talk with you. Expertise in Ruby/Rails is not a prerequisite.
Help communities get sponsorship while running record-breaking marketing programs. We’re seeking exceptional engineers who love making beautiful software products, thrive on solving tough problems and yearn to be part of a small and nimble downtown T.O startup
Last but not least..
You opted in to Ruby Weekly at RubyWeekly.com to get weekly e-mails about the Ruby programming language. Reading this as a non-subscriber? Click here to subscribe.
To unsubscribe, click here or e-mail the list maintainer directly at rw@peterc.org. To change your e-mail address, click here.
Address: Office 30, Lincoln Way, Fairfield Enterprise Centre, Louth, Lincs, UK, LN11 0LS