Ruby Weekly
Issue 366 — September 14, 2017
The vulnerabilities include a buffer under-run vuln in Kernel.sprintf and RubyGems issues. Ruby 2.2.8 and 2.3.5 are also out for the same reason.

Sandi Metz
Three metrics that can be combined to measure the maintainability of your code and find outliers of complexity.

Brakeman Pro  Sponsored
Cross-site scripting (XSS) is the most common web vulnerability and Rails applications are not immune. Learn how XSS can sneak into Rails apps and how to prevent it in this blog post. Want to check your code for XSS? Brakeman Pro can help.

Brakeman Pro

Michael Hoffman
Ruby’s algorithm for finding the definition of a constant is more complex than you might think.

Brandur Leach
The start of a series of posts on building more robust (and data accurate) APIs by leaning on Postgres’s transactional features.

Sergii Makagon
An analysis of how arguments are passed in Ruby which, as you might’ve guessed, depends on many factors.


In brief