I took it more like "oh look, another Rails security flaw, big surprise". Not "m... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		obstacle1 on March 20, 2013 \| parent \| context \| favorite \| on: Today's Email Incident I took it more like "oh look, another Rails security flaw, big surprise". Not "move along, nothing to see", but rather "take pause and reconsider using Rails".

badgar on March 20, 2013 [–]

The point isn't that they had a security flaw, it's that the patch release fixing it changed the god damn default ORM's semantics!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact