Highlights of the week:
NOTE: It includes an important security fix for Hash-flooding DoS vulnerability for Ruby 1.9. In case you are using earlier versions of Ruby 1.9 in production systems, it’s highly recommended that you upgrade. Rails applications may be vulnerable to an attacker sending a specially-crafted HTTP request to exploit this.
Linux based package managers are known to be good at keeping up to date. You can also install it via RVM, or if you prefer using Sam Stephenson’s rbenv ad ruby-build, then you can use the HEAD version of ruby-build that has a definition file. On Mac OS X you;‘d better use Homebrew for this:
$ brew install ruby-build --HEAD $ rbenv install 1.9.3-p327
The Rails guys over on the blog also explain how to limit the effectiveness of potential attacks. Go on, read it. You might learn a thing or two.
Well, this week Rails 3.2.9 has ben released. This might not be too exciting for most of us as I reckon many of us are waiting for Rails 4 to arrive. WAT?! U DUNNO RAILS 4?! Go on and find out more about it. It’s a useful list of things that are changing in Rails 4, along with links to relevant blog posts, gems, railscasts, pull requests etc. Murray reckons it’s a living document, so it’ll get updated as things change or more content is added.
With the Infinite Jukebox, you can create a never-ending and ever changing version of any song. Using The Echo Nest, the application breaks down any song into individual beats, so that it can play it infinitely. Awesome stuff, after seeing this our Rob feels super inspired to go to the Music Hackday London tomorrow!
aka 'How to make your broken Chrome extension work again’. Rob explains it briefly:
After an update my Chrome extension didn’t want to install in Chrome anymore. After spending long hours of debugging and fixing the issue, which was caused by the Chrome team updating the browser without documenting changes that effect quite some extensions in the Chrome Web Store, I wrote a post about the issue with my findings.
Zach Holman’s presentation from the Aloha Ruby Conf 2012 about the ‘secrets’ behind Git and GitHub. There are things that we all know and use every day, but there are also things, that I personally didn’t have a clue about and look super useful. Check out the video, you might find a real secret yourself :)
Also, let’s be honest: Sometimes Git can be a bit frustrating. Check out ‘When in Git’ and you will know what we mean. (Thanks Matt for posting this)
Best thing I’ve seen all week:
… because an uninterrupted stream of kittens is the only thing that can generate enough relax with things going on.
Thank you Tom ten Thij for posting this. Made my day and made it worth having a second monitor for real.