Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Will It Inject? A look at SQL injection and Ac...

Will It Inject? A look at SQL injection and ActiveRecord

If you've struggled through writing complex queries in raw SQL, ActiveRecord methods are a helpful breath of fresh air. If you're not careful though, those methods could potentially leave your site open to a nasty SQL Injection attack.

We'll take a look at the most common ActiveRecord methods (and some of the lesser known ones!) with one question in mind....will it inject? If it's vulnerable to a SQL injection attack, we'll cover how to structure your query to keep your data secure.

Jess Rudder

May 06, 2016
Tweet

More Decks by Jess Rudder

Other Decks in Technology

Transcript